1fc4705744
adding information important to operators of SMTP services used by a number of Windows (and probably Unix) MUA packages. This text has been approved by the author and will be included in the next release of exim-4. Another release of exim-3.3x is not expected. This change is based on an explanation of SSL certificates attributed below, but was not a direct submission. Errors are my own, etc. Submitted by: terry Message-Id: <3C3F3A93.C1ECF9B0@mindspring.com>
22 lines
949 B
Text
22 lines
949 B
Text
--- ../exim-texinfo-3.30/doc/spec.texinfo.orig Tue Jun 12 12:20:49 2001
|
|
+++ ../exim-texinfo-3.30/doc/spec.texinfo Tue Jan 15 17:19:46 2002
|
|
@@ -20785,6 +20785,19 @@
|
|
may be adequate for all your requirements if you are mainly interested in
|
|
encrypting transfers, and not in secure identification.
|
|
|
|
+However, many clients require that the certificate presented by Exim be a user
|
|
+(also called "leaf" or "site") certificate, and not a self-signed certificate.
|
|
+In this case, the self-signed certificate described above must be installed on
|
|
+the client host as a trusted root certification authority and the certificate
|
|
+used by Exim must be a user certificate signed with that self-signed
|
|
+certificate.
|
|
+
|
|
+For information on creating self-signed CA certificates and using them to sign
|
|
+user certificates, see the "General implementation overview" chapter of the
|
|
+Open-source PKI Book, available online at:
|
|
+
|
|
+http://ospkibook.sourceforge.net/
|
|
+
|
|
|
|
|
|
|