[tpop3d-discuss] tpop3d-1.5.1 and SSL configuration
Chris Lightfoot
chris at ex-parrot.com
Wed, 20 Aug 2003 16:07:02 +0100
On Wed, Aug 20, 2003 at 05:59:44PM +0300, ODHIAMBO Washington wrote:
> Hello all,
>
> I am testing the latest release
excellent! that's what we like to see :)
> and I have two questions regarding the new
> features.
> 1. I would like the daemon to listen at several IP addresses for *.wananchi.com on
> the standard POP3 port, then also listen at those addresses on port 995 which
> OutHouse uses via SSL.
>
> Currently (1.4.2) I have this:
>
> listen-address: 62.8.64.4(pop.wananchi.com) 212.49.74.4(smtp.wananchi.com) 192.168.50.3(mail.wananchi.com)
>
> I would like to add the same names, but now on SSL port, like
>
> 62.8.64.4:995;tls=stls,wananchi.crt,wananchikey\
> 212.49.74.4:995;tls=stls,wananchi.crt,wananchi.key\
> 192.168.50.3:995;tls=stls,wananchicrt,wananchi.key
No, should be tls=immediate to negotiate encryption
immediately on connection. You could add tls=stls and the
certificate names to the normal listen-address
specifications too, so that clients can negotiate
encryption if they want it.
> Secondly, I would like to try the bulletin thingie, and so I have added:
>
> onlogin-child-wait: true
> auth-perl-enable: true
> auth-perl-start: do '/usr/local/etc/tpop3d/bulletins.pl';
>
> Would this suffice to achieve the desired result (config-wise)??
Almost. You need to add an
auth-perl-onlogin: name_of_function
statement so that tpop3d actually runs the bulletins
function at login time.
--
Dilbert: Do you think you might be abusing your power?
Wally: What would be the other reasons to have power?
(Scott Adams)