[ale] Mail server with self signed Cert
Jeremy T. Bouse
jeremy.bouse at undergrid.net
Wed Mar 11 09:58:57 EDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Robert L. Harris wrote:
> Anyone running a mailserver supporting ssl with a self signed cert?
> I found a
> weird message in my logs. It seems a customer could not mail TO us because
> we have a self signed cert. Anyone run into this before? Any
> recommendations
> on someone to sign a new cert if we need to go that route?
>
> Robert
>
I'm using a self-signed cert on my server for both Postfix and Dovecot.
I haven't noticed any issues other than mail clients not recognizing the
CA and asking if you wanted to trust it. That is easily solved by
generating your own CA certificate and then signing any certs you need
with it. Then provide the CA cert to anyone needing to validate your
certs. Just add it like any other CA certificate and then as long as the
CN of the certificate matches the hostname, no more errors.
Regards,
Jeremy
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iF0EARECAB0FAkm3w5kWGGhrcDovL3N1YmtleXMucGdwLm5ldAAKCRCagQNPdb5V
OSt2AJ9UeGjmEZIbWOwSQBA4hKDQysfTggCgmlGuHGPdqZAlSkUNG4IyVOk3HVs=
=A3iC
-----END PGP SIGNATURE-----
More information about the Ale
mailing list