On 1/1/20 12:55 PM, John Levine wrote:
In
article<dfa17007-a637-88d8-339c-a6225b1648c5(_at_)network-heretics(_dot_)com>
you write:
(I do also wonder how many existing SMTP servers can handle TLS with
client certificates, because that seems like that would also be a
recommendation worth considering.)
Several, as noted, and there are some old patches for qmail to do it, too.
But once again, this is submission, not SMTP. A client certificate is
a plausible way for a submission client to authenticate itself to the
submission server.
Agreed that client certs can be useful for mail submission
authentication. But I was wondering about the feasibility of migrating
to use of client certificates for relay to mail exchangers, i.e. across
administrative mail domain boundaries.
Keith
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp