You should have the following files already:
Code: Select all
ssl.key
ssl.crt
ca-bundle.pem (http://www.startssl.com/certs/)
Code: Select all
# TLS parameters
smtp_tls_note_starttls_offer = yes
smtpd_tls_cert_file = /etc/ssl/StartCom/ssl.crt
smtpd_tls_key_file = /etc/ssl/StartCom/ssl.key
smtpd_tls_CAfile = /etc/ssl/StartCom/ca-bundle.pem
smtp_tls_CAfile = /etc/ssl/StartCom/ca-bundle.pem
smtpd_use_tls = yes
smtp_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_tls_auth_only = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
Small little "tut" but it doesn't need more explanation then that