|
SSL Settings
2015/11/25 |
|
Configure SSL to encrypt connections. SMTPS uses 465/TCP, POP3S uses 995/TCP, IMAPS uses 993/TCP.
|
|
| [1] | |
| [2] | Configure Postfix and Dovecot for SSL. |
|
mail:~ #
vi /etc/services # line 116: add smtps 465/tcp # Secure Mail Transfer smtps 465/udp # Secure Mail Transfer
mail:~ #
vi /etc/postfix/main.cf # line 737: change smtpd_use_tls = yes
# line 741,742: add smtpd_tls_cert_file = /etc/ssl/private/server.crt smtpd_tls_key_file = /etc/ssl/private/server.key
smtpd_tls_session_cache_database = btree:/etc/postfix/smtpd_scache
mail:~ #
vi /etc/postfix/master.cf # line 33-35: uncomment smtps inet n - n - - smtpd -o syslog_name=postfix/smtps -o smtpd_tls_wrappermode=yes # line 50: uncomment tlsmgr unix - - n 1000? 1 tlsmgr
mail:~ #
vi /etc/dovecot/conf.d/10-ssl.conf # line 6: change ssl = yes
# line 12,13: specify certificates ssl_cert = < /etc/ssl/private/server.crt ssl_key = < /etc/ssl/private/server.key
systemctl restart postfix dovecot |
| [3] | For Email Client's settings, (Windows Live Mail) Open the property of an account and change settings like following example. (if you use PO3S, input '995 for incoming mail) |
|
| [4] | Click sync button on Windows Live Mail, then following warning is shown because certificates is own created on your server. It's no ploblem. Click 'Yes' to proceed, then it's possible to send/receive emails through SSL connection. |
|