[Top] [All Lists]

Re: [ietf-smtp] certificate pinning

2014-06-13 19:24:55
On Sun, Jun 08, 2014, Jim Fenton wrote:

Before we get too far down the road with how to accomplish this, I'd
like to ask about the "beneficial" part: What behavior we would like to
occur with respect to certificate validation?

That's local policy. For example, in sendmail (and most likely
other MTAs) you can require certain restrictions on connections,
this would be just another one, e.g.,      PERM+VERIFY:112

requires successful cert verification from hosts within the domain.

ietf-smtp mailing list

<Prev in Thread] Current Thread [Next in Thread>