On Sun, Apr 24, 2022 at 11:20:29AM +0800, "ミユナ (alice)"
wrote:
>
>
> raf wrote:
> > I'm fairly sure that's correct. MTAs generally don't
> > care if the MX domain doesn't match the certificate on
> > port 25. But MUAs generally do care if the hostname
> > they are configured to connect to does
raf wrote:
I'm fairly sure that's correct. MTAs generally don't
care if the MX domain doesn't match the certificate on
port 25. But MUAs generally do care if the hostname
they are configured to connect to doesn't match the
certificate on whatever ports they connect
that's good. so I can have
Viktor Dukhovni wrote:
Bottom line, a matching name in the certificate is desirable, but
typically optional.
that makes clear. thanks
On Sun, Apr 24, 2022 at 08:53:25AM +0700, Olivier
wrote:
> ミユナ (alice) writes:
>
> > may I ask another question I am not sure.
> >
> > I have got the certificates from letsencrypt for the root domain, in
> > this case it's coakmail.com
> >
> > since the MUA uses coakmail.com as smtp/imap serv
On Sun, Apr 24, 2022 at 09:23:00AM +0800, ミユナ (alice) wrote:
> since the MUA uses coakmail.com as smtp/imap servers, this has no problem.
>
> but my MX RR is: box.coakmail.com
If you're using an https://mailinabox.email appliance, a suitable
certificate will be obtained automatically. If not, p
> On 04-23-2022 9:58 pm, ミユナ wrote:
> does plain traffic on port 25 require a certificate?
That is optional and up to you if you want connections to use STARTTLS.
Look into the following settings:
smtpd_tls_security_level
smtp_tls_security_level
smtpd_tls_cert_file
smtpd_tls_key_file
"ミユナ (alice)" writes:
> Olivier wrote:
>> Tou definitely need the certificate for box.coakmail.com because that's
>> the actual server that receives all the traffic.
>
> does plain traffic on port 25 require a certificate?
Maybe RFC 8461 is our friend. In my case, i did setup all MXs with the
ce
Olivier wrote:
Tou definitely need the certificate for box.coakmail.com because that's
the actual server that receives all the traffic.
does plain traffic on port 25 require a certificate?
ミユナ (alice) writes:
> may I ask another question I am not sure.
>
> I have got the certificates from letsencrypt for the root domain, in
> this case it's coakmail.com
>
> since the MUA uses coakmail.com as smtp/imap servers, this has no problem.
>
> but my MX RR is: box.coakmail.com
Tou definit
may I ask another question I am not sure.
I have got the certificates from letsencrypt for the root domain, in
this case it's coakmail.com
since the MUA uses coakmail.com as smtp/imap servers, this has no problem.
but my MX RR is: box.coakmail.com
I know MX only accpets messages on port 25 (
10 matches
Mail list logo
