SMTP SSL

[l008com]

[url]=http://img112.imageshack.us/img112/4636/picture1za4.png[/url]

So I set up a self-signed SSL certificate for my IMAP email and it went pretty painless. Every time a launch mail.app I have to tell it to trust the cert, but otherwise it runs fine. And Eavesdrop confirms that things are very much encrypted now. I set it to Require SSL in IMAP, since I’m the only end user on this server.

Now I need to set up SSL on SMTP and I’m not sure what to use. As I understand it, SMTP uses SSL for SMTP-to-SMTP connections if it’s available. My cert is self signed, so that probably isn’t going to work? Is the mail server smart enough to know that if I choose ‘Require’, that I mean only for mail sent from my client to the SMTP server, and not incoming mail from other SMTP servers to my server?

The main thing I want out of this is to protect my login credentials when I’m connecting to my own mail server from my computers, especially my laptop when I could be sharing a wireless network with anyone.

[l008com]

[QUOTE][u]Quote by: MacTroll[/u][p]Setting this to require will do exactly that, require all SMTP connections to use SSL. While many remote SMTP servers will be able to handle this, I imagine you’ll run into at least a few that won’t. At which point you wouldn’t get your mail, or be able to send to anyone at that host.

The two mail servers will negotiate what they are able to do, so setting it to use won’t block non-SSL servers.[/p][/QUOTE]

What about the fact that my server uses a self-signed cert. Would that mess up incoming mail from servers that DO support SSL? I’m thinking how mail and safari both give me a “this cert is unverified” type of message?

[Author]

Posts