On Friday 15 August 2003 13:21, Matt Chambers wrote: > Does SSL crypt the username and password being sent or would I need to > enable APOP or something of that nature to protect the authentication > info?
SSL should encrypt the entire session before any information is passed. So it is "secure" all the way through. > Where can I get a X509 cert? That depends on what you want. Courier creates its own when it starts up if they're not there, or you can use the scripts that come with it to create your own: /usr/lib/courier/share/mk<service>cert (<service> = esmtpd, imapd, or pop3d). These in turn read the configuration files found in /etc/courier/<service>.cnf. If you want to do anything more complicated like make your own signing authority and then signing your own certs then use openssl. A google search on openssl should turn up LOTS of examples of how to create your own certs, signing authority, etc. Jeff Jansen ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
