vhost / postfix / courier TLS question

Discussion in 'Installation/Configuration' started by Djamu, Jan 22, 2012.

  1. Djamu

    Djamu New Member

    Hi all,

    Looking at the postfix config ( main.cf ) I saw it's using a couple of variables to determine the hostname / mailname / data_directory etc ...
    So I guess this config is read for every incoming mail.

    As some of my users would like to fill in their domain as mailserver ( I enforce TLS ), I'm wondering if it's possible to use a variable to point to their site certs.

    so instead of ( in /etc/postfix/main.cf ) :
    smtpd_tls_cert_file = /etc/postfix/smtpd.cert
    smtpd_tls_key_file = /etc/postfix/smtpd.key

    something like :
    smtpd_tls_cert_file = $maildomain.cert
    smtpd_tls_key_file = $maildomain.key

    same thing for courier imap ( imapd.pem ) / pop3 ( pop3d.pem )

    Or am I missing something ?

    Last edited: Jan 22, 2012
  2. falko

    falko Super Moderator ISPConfig Developer

  3. Djamu

    Djamu New Member

    Ok, thanks for the pointers.

    "Another solution would be to get a multi-domain SSL cert, but you need to get a new one each time you want to include a new domain. "

    that's what I thought too.

    "Since the SMTP protocol does not tell the server what domain name the
    client thinks it is connecting to, there is no way to do what you ask. "


    I'll test multiple instances setup > need to get a test rig running 1st, I'll let you know how that went ... > future inclusion in ISPconfig ? > every domain running it's own instance


Share This Page