On 13.05.25 23:42, Matthew J Black via Postfix-users wrote:
This is really weird - Our Postfix server is presenting old/expired LE
TLS Certs, even though we've updated the certs AND restarted Postfix
(and Dovecot) (and even rebooted the server) multiple times.
I've done a thorough search of the box for the old certs and can find
nothing.
I've done a thorough search of the Postfix config files and the
correct/new certs are listed.
I've confirmed the certs on the server with (for eg) `openssl x509 -in
/path/to/cert.pem -noout -text` and they are the new/correct certs.
However, when we do (for eg) `openssl s_client -starttls smtp -connect
mail.peregrineit.net:587` we get the old/expired cert.
Again, we HAVE restarted postfix and also rebooted the server.
FTR This is the latest version of Postfix.
Has *anyone* seen this behaviour before - and more importantly, does
anyone have any idea WTF is going on and how to fix it?
are you sure the proper smtpd_tls_cert_file and smtpd_tls_key_file are
configured in postfix configuration?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you noticed how popular it remains?
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
