Hi Vilius, On Wed, 16 May 2007 22:45:36 +0300 UTC (5/16/2007, 2:45 PM -0500 UTC my time), Vilius Šumskas wrote:
>> read up on DNS. Have you ever built DNS servers professionally, or >> maintained at least one? Do you understand how it works. Have you ever >> built email/IMAP/POP servers professionally, or maintained one or 100s of >> them? V> This has nothing to do with DNS. It does based on your earlier generalized questions/remarks. V> You don't need to "redirect" user data for this. Simply own a V> server/router in between, create a certificate and make the server V> transparent. Great, easily done, now how do you get my (or anyone's) password into your fake IMAP server, maybe sitting in the DMZ or in front of that, so I can auth into it? Again, the cert means nothing..... we are not talking about e-commerce. I can generate certs all day long. Client must authenticate to get into the server. You don't need a cert to get your mail :) V> And yes I built and installed 10s of mail systems on Linux, NetWare and V> Windows and currently maintaining about 7 of them. Good, glad to hear it. I gave up NetWare years ago. I stick with *n.x commercially. V> All of them have _valid_ CA authority signed not expired certificates. V> I don't know, maybe I'm just stupid and my clients just wastes money V> on them, but this is how the thing are done in the part of the world V> where I'm living in. To some degree here too, but it is far from mandatory unless you are an ISP. Most often, self-issusing certs are done. Obviously if the site runs e-commerce or has a web presence, that cert would be used. V> Maybe in yours invalid certificates are usuall and this is normal. It is not the norm, but it does happen, especially to small to medium businesses who run their own mail/IMAP server year after year. -- Gary ________________________________________________________ Current beta is 3.99.06 | 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html
