Conventional TLS/SSL for SMTP is flawed and the x509 certificate business is a pain.
Get a 35 minute crash course in "DANE" style securing x509 certificates using DNSSEC secured DNS using BIND 9 and the Postfix mail server from Mr. Carsten Strotmann from the Men & Mice Services team.
Carsten also answers the following questions:
- Does the Men & Mice Suite support DANE & TLSA?
- For DANE I need a DNS hosting provider that supports DNSSEC, where can I find one?
- What impact will DANE have on the current certificate business?
Take a look!