On Wed, Jun 24, 2015 at 11:01:15AM +1000, Jason Tubnor wrote: > Hi, > > Before I go through with purchasing a wildcard cert, can anyone tell > me if the following as written in the man page: > > pki mail.example.com certificate "/etc/ssl/mail.example.com.crt" > pki mail.example.com key "/etc/ssl/private/mail.example.com.key" > > listen on lo0 > listen on egress tls pki mail.example.com auth > > --- > > Would work with a wildcard cert for client authentication? What I'd > be looking for is: > > pki *.mail.example.com certificate "/etc/ssl/wildcard.mail.example.com.crt" > pki *.mail.example.com key "/etc/ssl/private/wildcard.mail.example.com.key" > > listen on lo0 > listen on egress tls pki *.mail.example.com > listen on egress port 587 tls pki *.mail.example.com auth > > ---- > > Is the above syntax correct and would it work successfully? >
Nope, it won't work ... yet. It won't work with our upcoming major release 5.7.1, but if you open a ticket on our tracker, I can fix before the next one. -- Gilles Chehade https://www.poolp.org @poolpOrg -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org