[Dovecot] courier-imap to dovecot-imap migration: missing TLS_TRUSTCERTS feature

Timo Sirainen tss at iki.fi
Thu Feb 10 02:13:22 EET 2011


On Wed, 2011-01-19 at 11:46 +0100, Uffe Jakobsen wrote:

> All certificates are self signed "standalone" cerfificates - no CA 
> hierarchy/structure is made.
> 
> With courier-imap we could just put every client certificate into a 
> trusted cert file (or hashed directory for a larger number of clients) 
> and courier-imap would check that through TLS_TRUSTCERTS.
> 
> I would like to keep the current appproach and avoid the whole mini CA 
> setup - that way I can also avoid reissuing new certs to all existing users.
> 
> Question: can a similar setup be achieved with dovecot-imap ?

Doesn't this work?

ssl_ca = </etc/dovecot/all-client-certs.pem




More information about the dovecot mailing list