Hi Folks,
I am familiar with how imapd / ipop3d are set up for TLS ... by making
symlinks from files such as
imapd-IPv4.pem -> the_certificate.pem
This works and has always worked fine. I wonder if anyone has patched
Panda or uw imap to support SNI (server name indication)? E.g. some
way that the server can look an an expected host header and use tha to
pick the PEM file. I could imagine it could be something simple like:
1. Get the the desired host name from the TLS dialog
2. Instead of looking at imapd-IPv4.pem, look at hostname.pem (assuming
its the same hostname for imapd, simapd, ipop3d, and sipop3d ... which
it would be in 99.9% of cases, I imagine).
Thanks,
-Erik Kangas
[1]LuxSci Erik Kangas, PhD
President/CEO
[2][email protected] 617-596-9558
be Smart. be Secure.
[3]www.LuxSci.com Follow LuxSci: [4]Follow LuxSci on
Twitter [5]Follow LuxSci on Facebook [6][IMG]
References
Visible links
1. https://luxsci.com/
2. mailto:[email protected]
3. http://www.luxsci.com/
4. http://www.twitter.com/LuxSci
5. http://www.facebook.com/pages/Westwood-MA/LuxSci/25893114249
6. http://feeds2.feedburner.com/LuxsciFyi
_______________________________________________
Imap-uw mailing list
[email protected]
http://mailman13.u.washington.edu/mailman/listinfo/imap-uw
