[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?

Timo Sirainen tss at iki.fi
Fri Apr 16 13:19:11 EEST 2010


On Thu, 2010-04-15 at 07:46 +0200, Andreas Schulze wrote:
> ssl = yes
> ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem
> ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem
> protocol imap {
>   ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem
>   ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem
> }
> 
> Imagine the config if managesieve should use yet an oher cert...
> This is confusing while reading the config later.
> 
> my wish:
> use one cert/key pair for all services 

I don't really understand what you're asking. You can use the same
cert/key to all services, but of course that requires that either all of
them use the same hostname or you use alt names. Or are you thinking
something like:

ssl_cert = </etc/ssl/%s01.t6..

i.e. %s expanding to imap, pop3, etc? Maybe that could be done..

> or allow ssl only in a protocol section

I think you can do that already?

ssl = no
protocol imap {
  ssl = yes
  ..
}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20100416/919a531a/attachment.bin 


More information about the dovecot mailing list