vhost / postfix / courier TLS question

Discussion in 'Installation/Configuration' started by Djamu, Jan 22, 2012.

  1. Djamu

    Djamu New Member

    Hi all,

    Looking at the postfix config ( main.cf ) I saw it's using a couple of variables to determine the hostname / mailname / data_directory etc ...
    So I guess this config is read for every incoming mail.

    As some of my users would like to fill in their domain as mailserver ( I enforce TLS ), I'm wondering if it's possible to use a variable to point to their site certs.

    so instead of ( in /etc/postfix/main.cf ) :
    smtpd_tls_cert_file = /etc/postfix/smtpd.cert
    smtpd_tls_key_file = /etc/postfix/smtpd.key

    something like :
    smtpd_tls_cert_file = $maildomain.cert
    smtpd_tls_key_file = $maildomain.key

    same thing for courier imap ( imapd.pem ) / pop3 ( pop3d.pem )

    Or am I missing something ?

    Last edited: Jan 22, 2012
  2. falko

    falko Super Moderator Howtoforge Staff Moderator HowtoForge Supporter ISPConfig Developer

  3. Djamu

    Djamu New Member

    Ok, thanks for the pointers.

    "Another solution would be to get a multi-domain SSL cert, but you need to get a new one each time you want to include a new domain. "

    that's what I thought too.

    "Since the SMTP protocol does not tell the server what domain name the
    client thinks it is connecting to, there is no way to do what you ask. "


    I'll test multiple instances setup > need to get a test rig running 1st, I'll let you know how that went ... > future inclusion in ISPconfig ? > every domain running it's own instance


Share This Page