E-mail and SSL

[Ed]

Hi folks,

It seems that it is required to authenticate against an exchange server
(relay), if you want to send e-mail using SMTP in ASP.NET 2.0. But how do
you ensure that the credentials you are sending are not clear text over your
network. Does this require the installation of a digital certificate on the
web server? The code below has smtp.EnableSsl = true. Does this imply that
there is a digital certificate installed in IIS, or is this a feature of
Exchange? And if this is in exchange does the exchange administrator need to
enable SSL?

Thanks in Advance...Ed.


MailMessage mail = new MailMessage("(e-mail address removed)",
"(e-mail address removed)"); mail.Subject = TextBox1.Text;
mail.Body = TextBox4.Text;
SmtpClient smtp = new SmtpClient("smtp.MyMail.com", 23);
smtp.Credentials = new NetworkCredential("(e-mail address removed)", "xxxxx");
smtp.UseDefaultCredentials = false;
smtp.EnableSsl = true;
smtp.DeliveryMethod = SmtpDeliveryMethod.Network;
smtp.Send(mail);

 

[bruce barker]

you don't need exchange, just an smtp server. exchange has a smtp
gateway that can be used. there are several authentication schemes the
smtp server can use. if ssl is enabled on the smtp server, its a
certificate on the smtp server, not the client.

-- bruce (sqlwork.com)

 

[Ed]

Hi Bruce -

Thanks for the reply. So we would put the digital certificate on the SMTP
server.
Do you know of a document that walks us through how to do that? Would that
impact our existing Outlook clients? How would you configure Exchange/SMTP.