On Wed, May 28, 2014 at 05:55:25PM +0200, Benny Pedersen wrote:
> Since I made a private ssl key that is encrypted I like to know if it can be
> used with postfix?
No, passwords stored together with the data they protect are pointless.
> As in dovecot where the password for decrypt goes into 10-ssl.conf ssl_key
> password, what is the equant in postfix if yes?
There isn't one.
> if no i have to create a non encrypted private, and pay signer again :(
Don't be silly, just decrypt the key:
# umask 077
# openssl pkey \
-in /path/to/encrypted-key.pem \
-out /etc/postfix/smtpd-key.pem
you'll be prompted for the password to decrypt the input file, and
the output file will not be password protected. Don't forget the
"umask 077", otherwise the key will be world-readable.
Configure Postfix to use the decrypted copy of the key.
--
Viktor.
