This "/etc/ssl/private/tlsprivate.key": Does not equal "/etc/ssl/private/tlsprivatekey.key"
-ANGELO FAZZINA UITS Service Manager: Spam and Virus Prevention Mass Mailing G Suite/Gmail [email protected] University of Connecticut, UITS, SSG, Server Systems 860-486-9075 From: [email protected] [mailto:[email protected]] On Behalf Of Security Admin (NetSec) Sent: Friday, December 8, 2017 1:03 PM To: [email protected] Subject: Proper procedure for importing TLS cert & private key for Postfix use Recently imported files that contained the TLS certificate and the private key. Imported them to them proper directories and changed the default settings from the old cert & key files to the new files ("smtpd_tls_cert_file=/etc/ssl/certs/tlscert.pem" and "smtpd_tls_key_file=/etc/ssl/private/tlsprivatekey.key"). When I ran a test e-mail to see if it worked, I got the following errors in "mail.log" Dec 6 21:15:36 portus postfix/smtpd[18839]: warning: cannot get RSA private key from file "/etc/ssl/private/tlsprivate.key": disabling TLS support Dec 6 21:15:36 portus postfix/smtpd[18839]: warning: TLS library problem: error:0906406D:PEM routines:PEM_def_callback:problems getting password:pem_lib.c:110: Dec 6 21:15:36 portus postfix/smtpd[18839]: warning: TLS library problem: error:0906A068:PEM routines:PEM_do_header:bad password read:pem_lib.c:457: Dec 6 21:15:36 portus postfix/smtpd[18839]: warning: TLS library problem: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib:ssl_rsa.c:649: Any thought on what I am doing wrong and how I might fix? I am thinking possibly file permissions but did not want to chmod until I knew for sure. Thanks in advance! Ed Ray
