On Wed, 2018-11-28 at 10:03 +0100, Matus UHLAR - fantomas wrote: > On 27.11.18 10:52, Asai wrote: > > With Mozilla recently dropping support for all Symantec certs, our > > security > > cert now throws errors on Thunderbird clients. We’d like to install > > certbot on Centos 6, but I’m not sure if it’s going to interfere > > with > > Postfix (2.11) or Dovecot (2.2.18). Does anybody have experience > > with > > this? > > I have no problem with Let's Encrypt certificates and > postfix/whatever. > I'm just not sure if iphones have the root CA (DST Root CA X3) > installed - > just yesterday noticed a complaint. > > But I prefer dehydrated over bloated certbot.
This comes up enough to warrant the following questions: 1) What do you do about restarting services after automatic cert renewals in the middle of a holiday weekend? (i.e. renew_hook in /etc/letsencrypt/renewal/*.conf) 2) What do you do to list all certs to show revocation, expiration, renewal status (e.g. certbot certificates) -Jim P.
