It appears that Hal Murray via mailop <halmurray+mai...@sonic.net> said: >-=-=-=-=-=- > > >Lyle Giese said: >> Let's Encrypt requires (according to documentation I have seen) Port 80 >> TCP be in use for verification.� I have no other legit use for Port 80 >> on this smart host and decided a long time ago, not to use Let's Encrypt >> for that reason. > >It's trying to verify that you control the systems that the DNS points to.
As others have noted, you can put a validation record in your DNS, no port 80 needed. That's what I do. It was a modest pain to set up but it works great. My mail server has 100 names and 100 certs (one for each domain it hosts) and the renewals all work automatically. R's, John
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
