On Wed, Oct 29, 2003 at 01:50:37PM -0500, Sunder wrote:
> The push to do that should be aimed at the MTA authors and package
> organizers. If you can get it turned on by default, you're half way
> there. Last time I tried to fuck with this on qmail, I had to patch qmail
> to support it. Not something I'd like to do again - hopefully it's
> changed a bit.
>
> >From 1st hand experience - it is indeed a pain in the ass.
>
> But if you can get the big projects to turn it on by default for all/most
> of the MTA's, then you can push the bigger fish to do so as well. I'd
It's not setting up tls itself that's the problem, really, it's the cert
generation that got me bogged down and so everytime I've tried it, first with
sendmail and then with postfix, I've ended up with "okay, when I've got more
time I'll finish this".
Of course, ipsec is the same way. Setting up ipsec on a cisco router is sure
a lot easier.
--
Harmon Seaver
CyberShamanix
http://www.cybershamanix.com
