Current time: 03-14-2025, 11:17 AM Hello There, Guest! (LoginRegister)

Post Reply 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
[GELÖST] Zertifikat einbinden
Author Message
nex89 Offline
Junior Member

Posts: 30
Joined: Feb 2010
Reputation: 1
Post: #11
RE: [GELÖST] Zertifikat einbinden
Hm, so sieht meine aus:
Quote:server:/etc/postfix# cat
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - - - - smtpd
# -o receive_override_options=no_address_mappings # Uncomment this line, when unsing AMaViS
#submission inet n - - - - smtpd
# -o smtpd_enforce_tls=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps inet n - - - - smtpd
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
# For AOL-Accounts
587 inet n - - - - smtpd
-o smtpd_client_restrictions=permit_sasl_authenticated,reject_unauth_destination
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - - - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
# ====================================================================
# ispCP ω (OMEGA) a Virtual Hosting Control System
# @copyright 2001-2006 by moleSoftware GmbH
# @copyright 2006-2009 by ispCP |
# @version SVN: $Id: 2053 2009-09-28 19:14:58Z nuxwin $
# @link
# @author ispCP Team
# ====================================================================
# for AMaViS and spam filter support
amavis unix - - n - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
-o disable_dns_lookups=yes

localhost:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_override_options=no_address_mappings
-o mynetworks=
-o strict_rfc821_envelopes=yes

# ispCP autoresponder
ispcp-arpl unix - n n - - pipe
flags=O user=vmail argv=/var/www/ispcp/engine/messenger/ispcp-arpl-msgr

# TLS - Activate, if TLS is avaiable/used
smtps inet n - - - - smtpd
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in maildrop_destination_recipient_limit=1
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
# See the Postfix UUCP_README file for configuration details.
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
# Other external delivery methods.
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/
${nexthop} ${user}
02-13-2010 05:47 AM
Find all posts by this user Quote this message in a reply
nex89 Offline
Junior Member

Posts: 30
Joined: Feb 2010
Reputation: 1
Post: #12
RE: [GELÖST] Zertifikat einbinden
Also mit Apple Mail und folgenden Einstellungen tauchen die Fehler oben auf:
Ports: Standard Ports verwenden (25, 465, 587)
SSL aktivieren: JA
Identifizierung: Kennwort
Passwort: mein Passwort

Habe es dann gerade einmal unter Ubuntu mit Evolution Mail getestet und da funktioniert der Versand via SSL mit Postfix mit folgenden Einstellungen:
Server-Art: SMTP
Server erfordert Legitimation: JA
Sichere Verbindung verwenden: TLS
Legitimations-Typ: Klartext
Passwort: mein Passwort

Ich hoffe, dass hilft weiter....Sad
02-13-2010 11:49 AM
Find all posts by this user Quote this message in a reply
nex89 Offline
Junior Member

Posts: 30
Joined: Feb 2010
Reputation: 1
Post: #13
RE: [GELÖST] Zertifikat einbinden
Problem ist gelöst, lag an Apple Mail.

Ich habe mein rootCA.cert vom Server auf meinen Mac kopiert und in der Schlüsselbundverwaltung das rootCA.cert zu meinen Zertifikaten hinzugefügt...nun funktioniert alles super!

Ist so ein selbst erstellstes Zertifikat eigentlich genau so sicher, wie die gekauften, ja oder?
02-14-2010 03:02 AM
Find all posts by this user Quote this message in a reply
Post Reply 

Forum Jump:

User(s) browsing this thread: 1 Guest(s)