HowTo : Secure all Kolab Services

Daniel Hoffend dh at dotlan.net
Fri Apr 17 22:33:48 CEST 2015


Hello Kolab User

>Cyrus IMAPD notes.
>
>1. tls_server_ca_file is not a correct variable name. according to man 
>imapd.conf correct value is tls_client_ca_file
>2. there is no need to create a bundle for tls_client_ca_file value - 
>intermediate certificate is sufficient.
In theory you don't need the server_ca_file or client_ca_file parameter 
anyway ... It's used for verify other servers or verify a client 
certificate is likely not used for not for anything else.

Configuring tls_server_cert using a bundle certificate (server + chain) 
and tls_server_key is fully sufficent.


--
Regards
Daniel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5595 bytes
Desc: not available
URL: <http://lists.kolab.org/pipermail/users/attachments/20150417/f04b3928/attachment-0001.bin>


More information about the users mailing list