>> no matter which way you cut it --- MTAs allow you to send from localhost, >> and because of the tunnel ASSP is not in a position to check where the >> link >> is coming from, and apply it's local-ip address rules, hence the need to >> enforce AUTH > > ... but are they local users or external (roaming) users? If internal, > the ssl port can be hidden > from the outside. Or is the config more complicated?
External (roaming) users. Just about all my users are external users. Hence all the issues that I am encountering. But having ASSP enfore the AUTH, it resolves one of my biggest issues. The only issue now, which is not something that is easily fixed, is that all my incoming mail connections from other MTAs will have to be unsecured (non-SSL) over port 25. It isn't the end of the world I guess, but it would have been nice to be able to support secure MTA->MTA connections. Unfortunately, no matter how I slice it, it just isn't feasible with the current implementation of ASSP. Maybe down the road ASSP will natively support SSL. Until then, I will have to live with this configuration. Eric ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
