smtp-source missimg MIME-Version header

2009-04-23 Thread Jan C.
Hello, I'm using smtp-source as a test smtp-client and I've realized that it is not adding the MIME-Version: 1.0 to the generated email. Hence, some email clients do not display the received message correctly. My suggestion would be to add the following line in the smtp-source.c file, in the

TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-08 Thread Jan C.
Hello, I have my postfix set up as a TLS client to other smtp servers. I point smtp_tls_CApath to a directory where I store my own imported trusted CAs. My question is whether or not Postfix will also load the Root CAs stored in /etc/ssl/certs. If not, does it mean that I have to set

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-09 Thread Jan C.
/etc/ssl/certs AND from /foo/bar are trusted. Do you confirm this ? Thanks, Jan On Tue, Jun 8, 2010 at 5:56 PM, Victor Duchovni victor.ducho...@morganstanley.com wrote: On Tue, Jun 08, 2010 at 09:31:46AM +0200, Jan C. wrote: I have my postfix set up as a TLS client to other smtp servers. I

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-09 Thread Jan C.
Hi, Um, no. By default Postfix is not going to use TLS at all. When activated, by default, no certificate verification is done at all. Consult your distributor's package documentation if they have set different defaults. If I set smtp_tls_CApath to /etc/ssl/certs and then again to something

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-09 Thread Jan C.
Actually, this step is not needed to reproduce it : Now I set: ~ $ postconf -e smtp_tls_CApath=/etc/ssl/certs/ and reload postfix to sum it up, when smtp_tls_CApath is not empty, CAs from /etc/ssl/certs are trusted regardless the value of smtp_tls_CApath. regards, Jan

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-09 Thread Jan C.
Hello, ok then t least I know what's the origin of the behavior I had. On Wed, Jun 9, 2010 at 6:12 PM, Victor Duchovni victor.ducho...@morganstanley.com wrote: I guess our documentation has never promised the use of system CAs when CApath or CAfile are set, failing to override the system

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-09 Thread Jan C.
On Wed, Jun 9, 2010 at 6:35 PM, Victor Duchovni victor.ducho...@morganstanley.com wrote: Probably, although I don't think we've reached a final decision yet... My preference is to not trust some random list of CAs that came with the O/S OpenSSL package when the user specifies an explicit

Determine if an email to given domain will use TLS or not

2010-06-15 Thread Jan C.
Hello, I have Postfix with TLS policy maps set up to send traffic via TLS to remote MTAs. I'm writing an application which should be able to determine if an email to given domain will be sent through an TLS connection or not, just by reading the Postfix configuration. I thought that having a look

Re: TLS smtp_tls_CApath and /etc/ssl/certs

2010-06-15 Thread Jan C.
Did you just add this config option in Postfix 2.8 http://www.postfix.org/postconf.5.html#tls_append_default_CA ?

Re: Determine if an email to given domain will use TLS or not

2010-06-17 Thread Jan C.
ok thanks. Jan