[Dovecot] Dovecot 2.0b4 configuration issue, listen config option?

[Andreas Schulze]

Am 14.04.2010 07:36 schrieb Andreas Schulze:
> an in case you like different certs:
> 
> protocol imap {
>   ssl = yes
>   ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem
>   ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem
> }
> 
> protocol pop3 {
>   ssl = yes
>   ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem
>   ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem
> }

Hello Timo,

I like one service per ip/dnsname which needs one cert per service.
If I have different certs I think the writing above is much clearer then
writing one cert in the main configsection an overwrite it in one protocol section.

This is the real config for dovecot2b4 to have different certs:

ssl = yes
ssl_cert = </etc/ssl/pop01.t6-isa.de/cert+root.pem
ssl_key = </etc/ssl/private/pop01.t6-isa.de-key.pem
protocol imap {
  ssl_cert = </etc/ssl/imap01.t6-isa.de/cert+root.pem
  ssl_key = </etc/ssl/private/imap01.t6-isa.de-key.pem
}

Imagine the config if managesieve should use yet an oher cert...
This is confusing while reading the config later.

my wish:
use one cert/key pair for all services or allow ssl only in a protocol section

Andreas


-- 
Andreas Schulze
Internetdienste | P532

DATEV eG
90329 Nürnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 Nürnberg, Paumgartnerstr. 6-14 | Registergericht Nürnberg, GenReg Nr.70
Vorstand
Prof. Dieter Kempf (Vorsitzender)
Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender)
Dipl.-Kfm. Michael Leistenschneider
Jörg Rabe v. Pappenheim
Dipl.-Vw. Eckhard Schwarzer
Vorsitzender des Aufsichtsrates: Reinhard Verholen

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 315 bytes
Desc: digitale Signatur dieser Nachricht von Andreas Schulze
Url : http://dovecot.org/pipermail/dovecot/attachments/20100415/80d8121f/attachment.bin