For hosting environments--where TLS certs can change hundreds of times in a
matter of minutes--it would be a boon for Dovecot to load those certificates
dynamically rather than all at once.
Pure-FTPd implements a nice solution to this: a standalone service that fetches
TLS certificates & keys.
Still banging my head against the wall...
Upon running this query: SELECT username as user, password, '%w' AS
userdb_mail_crypt_private_password FROM mailbox;
I'm getting the following output:
++--
password_query = SELECT \
username as user, password, \
'%w' AS userdb_mail_crypt_private_password \
FROM mailbox WHERE username="%u";
Try if using ' instead of " makes a difference.
FROM mailbox WHERE username='%u';
I tried it but it doesn't seem to make any difference at all.
Can someone please assist me with reading logs? Does this log below mean
Dovecot is trying to use master_user again or simply reading master_user
password file?
Sep 2 15:35:33 mx dovecot: auth: Debug: Read auth token secret from
> "Bartosz" == Bartosz Kwitniewski writes:
> Out of other services on that machine that are able to handle such
> number of certificates during reloads:
> - proftpd loads configs dynamically based on SNI domain
> - exim loads certificates dynamically based on SNI domain
> - LiteSpeed switche
