|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: client authentication in outlook
From: Andrew Diederich (andrewdied
gmail.com)
Date: Wed May 31 2006 - 12:30:53 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 5/31/06, Victor Duchovni <Victor.Duchovnimorganstanley.com> wrote:
> Does the server list the issuing CA in its smtpd_tls_CAfile? The client
> may want a solicitation for the right CA before it uses those credentials.
>
> http://www.postfix.org/TLS_README.html#server_vrfy_client
<snip>
I used smtpd_tls_CApath, which I believe does the same thing. These
were my notes on it:
# http://www.postfix.org/TLS_README.html
# http://www.postfix.org/postconf.5.html#smtp_tls_CApath
# Specify dir where trusted CA files live, then run c_rehash.
# included CAcert class 1, class 3, and Thawte free personal cert.
smtpd_tls_CApath = /etc/postfix/CAdir
> ls CAdir/
5ed36f99.0 class1cacet.pem e5662767.0
709afd2b.0 class3cacert.pem thawte_personal.pem
So, I think Outlook just doesn't support it. The personal certs from
CAcert support about everything, and mine includes code signing, too.
Strangely, while Opera support tls client auth, it doesn't support
S/MIME.
--
Andrew Diederich
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]