Encrypted Message Transport and Certificate based Relaying in Postfix
With Patrick Koetter.
SMTP, as designed, does not protect you from intruders that may be snooping on your network packets. Transport Layer Security (TLS), a system that encrypts communication between two hosts before any sensitive data goes out over the wire, can fix this problem.
TLS has been available for Postfix for many years as patch. Wietse Venema rewrote the code and added it to Postfix. TLS will be part of Postfix in the upcomming 2.2 release.
The speech will prepare you to use Transport Layer Security (TLS) for Postfix in its two forms: client-side and server-side TLS. You will see how to configure client-side and server-side TLS and how to do some TLS performance tuning.
Beyond the basics you will see how you can configure Postfix to use TLS selectively, enable wrappers for secure plaintext SMTP Authentication and go even a step further to use TLS for certificate based relaying.
Patrick Koetter
- M.A. in American Studies
- Work at Phase 4, Munich (Vereinsbank, Hypovereinsbank, T-Data)
- Work at Roses Online Services, Head of Network Operations
- Work at orchidproject, Information Architect
- Work at Ludwig-Maximilians Universität München, Information Architect
Other work: Co-author of The Book of Postfix. Consulting, Integration of websites into existing business processes.