>> I've read and applied >> https://help.ubuntu.com/8.04/serverguide/C/postfix.html. How could this >> happen? Shouldn't the information be consistent? > > Postfix is not affiliated with Ubuntu, so whatever you read on the > above-linked web site is the responsibility of the Ubuntu person who authored > that document.
Geh, who keeps writing these things? I fixed a different Ubuntu postfix guide a little while back to get rid of the braindead key+cert creation. Look familiar? https://help.ubuntu.com/community/Postfix?action=recall&rev=43 Copy-and-paste procedures are great for making sure stuff happens reliably, but it's no good when you don't *understand* how it works. Assuming you know what you're trying to achieve regarding key/certificate generation, please use the correct steps. I'm pretty certain Postfix is complaining because your key is encrypted. Decrypting the key requires a passphrase, which Postfix is not equipped to ask you for. Why do these guides tell you to generate an encrypted key, then decrypt it again straight away? Why not create an unencrypted key to start with? Someone didn't understand what they're doing. # touch smtpd.key # chmod 600 smtpd.key # openssl genrsa 1024 > smtpd.key If you want to know, have a look at your current smtpd.key file. You'll probably see: -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,5BD4C520F39FC376
