For SMTPS this will IMHO never work per default, because there is no known
domain at the moment of ->accept_SSL
SSL:
The SSL socket is listening. Nobody knows for which domain (if multiple
are hosted) the next connection is for.
V2 has an option to chose the used certificate for different listeners -
Perl skills are required to do this..
STARTTLS:
Even here the SMTP protocol does not provide to know the target domain.
for example:
-> 220 here I am
<- EHLO my.domain
-> 250-STARTTLS
-> 250-....
-> 250 HELP
<- STARTTLS
-> 220 go on
For both SSL and TLS, SNI may be possible, if the SMTP client sends the
SNI TLS extension in its SSL client hello message. Such an environment is
not commonly used fro SMTP.
The multidomain setup can become very complex - see RFC6698).
The latest Perl modules IO::Socket::SSL and Net::SSLeay are required.
HTTPS (configuration interface):
Here the right certificate will be use, if the latest IO::Socket::SSL and
Net::SSLeay(compiled with the latest openssl lib) are used (SNI support) -
and the domain/host in the URL is valid (matches a certificate).
V2 has an option to chose/verify the used certificate for different
listeners - Perl skills are required to do this.
Thomas
Von: "Ethical Host - John MacKenzie" <j...@ethicalhost.ca>
An: "'For Users of ASSP'" <assp-user@lists.sourceforge.net>
Datum: 16.06.2016 15:22
Betreff: [Assp-user] SAN ssl suport
Hi All
Does either version of assp (currently im on 1.x but going to be upgrading
to 2.x soon)
Have support for SAN wildcard ssl certificates? I tried using it but
assp
seemed to only pull the first domain listed on the certificate for
validation which doesn't work for me
Thanks
John
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and
traffic
patterns at an interface-level. Reveals which users, apps, and protocols
are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity
planning
reports.
http://pubads.g.doubleclick.net/gampad/clk?id=1444514421&iu=/41014381
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user
DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally
privileged and protected in law and are intended solely for the use of the
individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no
known virus in this email!
*******************************************************
------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity planning
reports. http://sdm.link/zohomanageengine
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user
