DISCUSSION: HOWTO Setup a Secure Relaying Email Server
LinuxAnswers DiscussionThis forum is to discuss articles posted to LinuxAnswers.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
what do you get when running netstat on the server?
The -t is a filter to show only tcp, -p displays the pid of the program with the connection.
you could try netstat -lp
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:imaps *:* LISTEN 1117/xinetd
stunnel needs the -r or -l as used on the server to tell it how to connect. The config file contains the needed information. Be sure that the config file is correct and that the user running stunnel can access it.
I run stunnel as root
ls -l /etc/stunnel
-rw------- 1 root root 278 Oct 5 11:14 www.conf
yes linuxnube it will work. the .dll files for openssl are found at stunnel.org in the download area, that's all you need on the client unless you intend to create certificates on the client. Then you would need to install openssl.
Last edited by DavidPhillips; 05-31-2004 at 10:43 AM.
According to the Article, one should setup stunnel and ssl on the client, too, to connect to e.g. a secure smtp server.
Fortunately, it is not so. I tested the setup and found that the mail client of Mozilla 1.5 can perfecly use the smtps server even if you do not have stunnel on the client! In my case I had a https server with client-server authentication using stunnel on the server, and, based on that setup, it took me not more than a minute to setup the new, smtps service.
Yes, that's true if your client supports it directly you can input the server instead of localhost. It does sound like your not using client certificate auth on the server if this works without using the client certificate. That's the difference.
Also not all clients will support it, so If yours does not you can do it with stunnel and ssl. If it does the choice is yours to decide.
Last edited by DavidPhillips; 05-31-2004 at 10:46 AM.