Autor: Mark Edwards Datum: To: Matt Bernstein CC: exim-users Betreff: Re: [Exim] 2 SSL questions
On Sunday, August 18, 2002, at 02:14 AM, Matt Bernstein wrote:
> At 00:48 -0700 Mark Edwards wrote:
>
>> 1) Is it possible to require clients to make secure SMTP connections? I
>> see that you can make Exim request a certificate with tls_verify_hosts and
>> fail if the client doesn't provide one, but is it possible to simply make
>> Exim only authenticate SMTP connections using SSL? My guess is no,
>> because
>> that would interfere with normal delivery of mail, but am I right?
>
> Use the ACLs. Here are some tips (a.b.c.d is the IP address of external
> interface you want to listen on):
Thanks for the help. Does putting SSL in the ACL section require that the
certificate is installed in the client separately, or will the client get
the certificate, then turn around and offer it for the authentication?