Stephen Warren <[EMAIL PROTECTED]> writes: > I am assuming that usage of openssl (or whatever) to create the > key/cert files is beyond the scope of the wiki, especially since > it's the same for all SSL servers, like Apache, etc.
I think what you put there is sufficient, yes. I have one question about this: "Theoretically, some AUTH methods are safe even over unencrypted connections. However, tmda-ofmipd does not currently support offering such AUTH mechanisms prior to STARTTLS, but allowing a different set of AUTH mechanisms after STARTTLS." tmda-ofmipd supports CRAM-MD5 authentication, doesn't it? _________________________________________________ tmda-workers mailing list ([email protected]) http://tmda.net/lists/listinfo/tmda-workers
