Configure SSL
2010/11/07 |
Configure SSL settings in order to encrypt datas in connection. |
|
[1] | Create certificates first, see here. |
[2] | Configure Postfix and Dovecot for SSL |
[root@mail03 ~]# vi /etc/postfix/main.cf # add at the last line smtpd_use_tls = yes smtpd_tls_cert_file = /etc/pki/tls/certs/server.crt smtpd_tls_key_file = /etc/pki/tls/certs/server.key smtpd_tls_session_cache_database = btree:/etc/postfix/smtpd_scache [root@mail03 ~]# vi /etc/postfix/master.cf # line 17-18: uncomment smtps inet n - n - - smtpd -o smtpd_tls_wrappermode=yes [root@mail03 ~]# vi /etc/dovecot/conf.d/10-ssl.conf # line 6: uncomment ssl = yes # line 12,13: uncomment and specify certificate ssl_cert = < /etc/pki/tls/certs/server.crt ssl_key = < /etc/pki/tls/certs/server.key [root@mail03 ~]# /etc/rc.d/init.d/postfix restart Shutting down postfix: [ OK ] Starting postfix: [ OK ] [root@mail03 ~]# /etc/rc.d/init.d/dovecot restart Stopping Dovecot Imap: [ OK ] Starting Dovecot Imap: [ OK ] |
Configure on client. Change settings like following example. (if you use PO3S, input '995 for incoming mail) |
Click syncronize on Windows Live Mail, then following warning is shown because certificate file is created on your server. It's no ploblem. Click 'Yes' to Proceed, then it's possible to send/receive emails trough SSL connection. |