On Wed, 2011-01-19 at 11:46 +0100, Uffe Jakobsen wrote: > All certificates are self signed "standalone" cerfificates - no CA > hierarchy/structure is made. > > With courier-imap we could just put every client certificate into a > trusted cert file (or hashed directory for a larger number of clients) > and courier-imap would check that through TLS_TRUSTCERTS. > > I would like to keep the current appproach and avoid the whole mini CA > setup - that way I can also avoid reissuing new certs to all existing users. > > Question: can a similar setup be achieved with dovecot-imap ?
Doesn't this work? ssl_ca = </etc/dovecot/all-client-certs.pem
