Re: [Exim] Status of TLS-support?

Pàgina inicial
Delete this message
Reply to this message
Autor: Philip Hazel
Data:  
A: Till Dörges
CC: exim-users
Assumpte: Re: [Exim] Status of TLS-support?
On Mon, 22 Dec 2003, [ISO-8859-15] Till Dörges wrote:

> - From what I've found in the documentation, on the web and in the
> mailing-list archives, it seems like this:
>
>  o  Exim supports server-certificates.
>  o  Exim supports client-certificates.
>  o  Exim itself can act as a TLS-client.
>  o  Exim does not support CA-certificates (certificate authority),
>      e.g. to verify the client-certificates.
>      You can, however, put multiple certificates in 'tls_certificate'
>      so that a client will be able to do the verification.
>  o  Exim does not support CRL (certificate revocation lists).


To an rough approximation, Exim supports what OpenSSL or GnuTLS
(whichever you are using) supports. However, I am an expert in neither
of those packages. It is possible that they have features which Exim
could use, but does not. Anybody know about revocation lists?

--
Philip Hazel            University of Cambridge Computing Service,
ph10@???      Cambridge, England. Phone: +44 1223 334714.
Get the Exim 4 book:    http://www.uit.co.uk/exim-book