Jordan Geoghegan <jor...@geoghegan.ca> wrote: > Hello, > > I was hoping to get a sanity check on some TLS certificate renewal > semantics I've been wondering about. > > First, I was curious if there is any better way to reload renewed tls > certificates into smtpd than 'rcctl restart smtpd'?
Yes, that's the way. smtpd doesn't have any reload functionatily built in, and SMTP (the protocol) itself has retry built-in, so it's not a problem in practice. > I was also hoping someone could confirm whether 'rcctl reload relayd' / > 'relayctl reload' will reload tls keys as well? The relayctl manpage > says that 'reload' is used to 'Reload the configuration file' - does > reloading the config file include reloading tls keys? > > Any insight or advice would be greatly appreciated. (cannot comment on the relayd part) Cheers, Omar Polo
