著者: Nico Erfurth 日付: To: Giuliano Gavazzi CC: Matt Bernstein, exim-users 題目: Re: [Exim] restricting AUTH Plain/Login to TLS connectionsy
Giuliano Gavazzi wrote:
> I have all the instructions for openssl to create a CA and generate all
> the certificates/keys you like. I also know how to setup imapd/ipopd to
> use the proper certs (and if you like apache too, that it where is all
> started for me).
> I have to put this sooner or later on my web site (perhaps in a
> restricted area...) for my perusal, but I can send you a very primitive
> draft, if that is what you were looking for.
> Ah, and I know how to make the root certs available to all keychain apps
> in MacOS9/X. I am not sure how to do that on plain unix, but I guess for
> all openssl based apps it can be done.
> For exim you clearly know how to.
>
> What I do not know is how to use client certs, but simply because I do
> not know of any mac client that can send them.
Maybe someone will provide a HowTo or config.sample on this topic some
day, I would really appreciate it, because it's useful in an corporate
enviroment.
And I could find anything really useful on this in the exim docs, but
maybe I just need to read more about openssl first ;)