Matt Hayes wrote:
Er.. why do you need certs to do smtp-auth between one mail server and another?
This covers the case of sending mail from a MUA to a MTA. You need to authenticate your user population as being authorized to send mail via your MTA. If you don't do this you'll be running an open relay and you'll end up in a RBL. So, your MUA (Thunderbird, Outlook, etc) needs to send user's username and password to the MTA. Since you don't want to send that kind of data in-the-clear you need to use TLS. This is the process that requires the server cert. If you self-sign your cert your user's MUA's will ask the user if they want to accept this connection. Thunderbird allows the choice of "accept permanently", but Outlook doesn't. Thus, a TB user gets bothered once, Outlook users are bothered each time they fire up their MUA. But then, if you're using Outlook you deserve to be bothered... This of course, has nothing to do with "receiving" mail at the MUA, but you have similar issues with SSL enabled pop and imap. Regards, Lew -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org