why sendmail and not postfix? (SMTP_AUTH branch)
Alexander Dalloz
alexander.dalloz at uni-bielefeld.de
Fri Dec 5 03:09:16 UTC 2003
Am Fr, den 05.12.2003 schrieb Rodolfo J. Paiz um 03:11:
> At 19:58 12/4/2003, you wrote:
> > > Took me 3 minutes to set up incl. building certs
> > > Redhat default config is pretty self explaining. :-)
> >
> > Wait...building certs? (I'll avoid the pun here...) I don't
> >remember that being a step....but I'll bet it's something I should do,
> >no?
>
> Building certificates is not in my HOWTO since I have simply not had the
> time to try to learn it and figure it out well enough to explain it. I'll
> happily give credit in the HOWTO for someone who explains this to me well
> enough so I can write the section on using secure mail transport. Any help
> welcome!
A good howto for generating an own CA, self-build and self-signed
certificates is to be found on http://sial.org/howto/openssl/. It is
more geneal and need to be strengthened for just fitting sendmail usage.
On my sendmail server I only allow authentification using the LOGIN mech
(which is a very common method as Outlook and OE are only able to use
this) requires a STARTTLS handshake to avoid sending user passwords in
clear text over the net. No need to give sniffers a touch down.
Alexander
--
Alexander Dalloz | Enger, Germany
PGP key valid: made 13.07.1999
PGP fingerprint: 2307 88FD 2D41 038E 7416 14CD E197 6E88 ED69 5653
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20031205/ea4c30a5/attachment-0001.sig>
More information about the fedora-list
mailing list