config mta on frontend

Hi Martijn,

Once again thanks for the info, I think I'll have to send a gift from my
country after so much trouble.

I could successfully send encrypted email, decrypt using the certificate
also pre-loaded in thunderbird.

Now the question I have is this, loading the certificates in the mail
clients in order to decrypt the e-mail? djigzo frontend or have any way to
decrypt the e-mail.

In short, I have my user(a)domain.com that connects to smtp frontend djigzo
and thesame when I send an e-mail arrives encrypted perfect, now would have
to decrypt the same e-mail or I have to do some extra configuration in the
frontend.

The idea is not to deal with all users and upload the certificate to each
mail client, I hope you understand my idea. :smiley:

ยทยทยท

--
Kindest Regards
Claudio.

Zitat von Claudio Bazan <cbazan(a)gmail.com>:

Hi Martijn,

Once again thanks for the info, I think I'll have to send a gift from my
country after so much trouble.

I could successfully send encrypted email, decrypt using the certificate
also pre-loaded in thunderbird.

Now the question I have is this, loading the certificates in the mail
clients in order to decrypt the e-mail? djigzo frontend or have any way to
decrypt the e-mail.

In short, I have my user(a)domain.com that connects to smtp frontend djigzo
and thesame when I send an e-mail arrives encrypted perfect, now would have
to decrypt the same e-mail or I have to do some extra configuration in the
frontend.

The idea is not to deal with all users and upload the certificate to each
mail client, I hope you understand my idea. :smiley:

The normal use case is to have some sort of "internal" network or
maildomain and the rest, which is external network or recipients. For
your internal users you should have a private key and a matching
certificate to get outgoing e-mail signed and incoming e-mail
decrypted. For external users Djigzo will collect their public
certificates if they digitaly sign their mail so you can encrypt mail
sent to them. So basically you have to do the follwoing:

- Configure the maildomain which should be "internal"
- Import the key/certificates for your internal users
- Configure Djigzo to sign all outgoing mail so your certificates get
attached to every mail
- Either configure Djigzo to encrypt every outgoing mail if a matching
certificate is available or configure mailadresses to use encryption
too by hand. An other option is to use a encrypt subject trigger so
the sender can decide for every outgoing mail if it should get
encrypted or not.

Regards

Andreas