How to configure SSL with CSE 0.9.0.87

How to configure SSL with CSE 0.9.0.87
Unfortunately the help system in this version isn’t fully updated to show the SSL support so here’s how to use CSE with SSL.

To configure SSL support, you need to turn off SSL in your e-mail client and turn it on the for port CSE is monitoring. CSE will attempt to import settings from Outlook Express and Thunderbird and do the setup for you. Here’s a real example of what the settings should be to configure for google mail with Outlook Express.

In Outlook express
And the normal account settings from googlemail, under the e-mail account tab click properties,
Servers tab:

• POP server: pop.googlemail.com
• SMTP server: smtp.googlemail.com
• Make sure the “My server requires authentication” check box is clicked.

Advanced tab:
Server port number:

• Uncheck “This server requires a secure connection (SSL)” for both POP and SMTP
• Set 465 for the SMTP port
• Set 995 for the POP port
• Click ok.

In Comodo SecureEmail configuration.
Go to the Protocols age:
To setup POP
Double click the POP protocol monitor to launch the properties dialog.

• click Add a port
• Under name set the user’s readable name to something like “My Google Secure POP”
• Check “Connect to the server over a secure connection (SSL)”, the port number should change to 995, if not, set it to 995.
• Under “mail server:” set “pop.googlemail.com”, this server name is needed to authenticate against the SSL certificate’s server name (the CN field).
• Click ok, and click Ok again.

SMTP, it’s similar to the above:
Double click the SMTP protocol monitor to launch the properties dialog.

• click Add a port
• Under name set the user’s readable name to something like “My Google Secure SMTP”
• Check “Connect to the server over a secure connection (SSL)”, the port number should change to 465, if not, set it to 465.
• Under “mail server:” set “smtp.googlemail.com”, this server name is needed to authenticate against the SSL certificate’s server name (the CN field).
• Click ok, and click Ok again.

Now Ok to close the CSE configuration window.

Of course, you’ll need a certificate for your google mail e-mail address installed in the Windows certificate store.

Now when you send or receive in you should see a padlock appear in the top right in the CSE pop-up. If you mouse-over the padlock you will be able to see the certificate details.

If you don’t see a padlock or the padlock check your settings, or if the padlock has a red strike through then something is wrong with the authentication. This could be for many reasons but most likely the host names don’t match, so mouse-over the padlock to see the host name from the server certificate, and check that matches your OE and CSE settings. The certificate could also be expired or may no be signed by a known trusted root.

Thanks
Shane.