> Gary <li...@lazygranch.com> kirjoitti 11.09.2017 kello 11:59: > > As you know, letsencrypt certs can be automatically updated. However, you > need to reload/restart Postfix/Dovecot to use the new cert. My email client > insisted I had an expired cert. I couldn't download or send email. > (Fortunately I'm on a test domain, getting ready for the Oct 1st Google > insistence on encryption.) > > Letsencrypt suggests running acme on a daily basis, so just do the same for > Postfix and Dovecot.
If you are running Certbot by EFF you should to take a look at post-hook and deploy-hook options for renew. There you can set a script to run after Certbot to restart or reload services as required. -- Cheers Petri https://metis.fi/en/petri tel:+358400505939
smime.p7s
Description: S/MIME cryptographic signature
