Hello
My settings for backup MX server are as follows. Do you think if they
have problems? I am looking for your kind suggestions.
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated,
permit_mx_backup, reject_unauth_destination
smtpd_sender_restrictions = permit_mynetwor
On Sun, Jul 23, 2023 at 11:22:26PM +0200, Paul Menzel wrote:
> > Does it really matter why some site offering opportunistic STARTTLS does
> > not have a validatable certificate? The connection can be trivially
> > downgraded by an on-path attacker (stripping STARTTLS) to just be
> > cleartext. O
On 23 Jul 2023, at 4:21 pm, Charles Sprickman via Postfix-users
wrote:
> In the case of the dehydrated ACME client
> (https://github.com/dehydrated-io/dehydrated) there's an option to run
> a bunch of commands on successful update, including something like
> "postfix reload" - one could also ins
> On Jul 23, 2023, at 2:29 PM, Viktor Dukhovni via Postfix-users
> wrote:
>
> On Sun, Jul 23, 2023 at 08:18:21PM +0200, lejeczek via Postfix-users wrote:
>
>>> You need to rebuild it periodically. Once a week should be enough,
>>> ACME certificates are typically good for 90 days and get rep
On Sun, Jul 23, 2023 at 08:18:21PM +0200, lejeczek via Postfix-users wrote:
> > You need to rebuild it periodically. Once a week should be enough,
> > ACME certificates are typically good for 90 days and get replaced
> > every 60, so when the new one is minted the old one is still good
> > for 30
On 23/07/2023 18:50, Viktor Dukhovni via Postfix-users wrote:
On Sun, Jul 23, 2023 at 09:39:52AM +0200, lejeczek via Postfix-users wrote:
What is "snis.map", and how is it used in your configuration?
tls_server_sni_maps = hash:/etc/postfix/snis.map
And when did you run as root:
# pos
On Sun, Jul 23, 2023 at 09:39:52AM +0200, lejeczek via Postfix-users wrote:
> > What is "snis.map", and how is it used in your configuration?
>
> tls_server_sni_maps = hash:/etc/postfix/snis.map
And when did you run as root:
# postmap -F hash:/etc/postfix/snis.map
to update that table?
lejeczek via Postfix-users:
>
>
> On 23/07/2023 16:00, Wietse Venema wrote:
> > lejeczek via Postfix-users:
> >> -> $ postfix reload # did not work, new certs/files where
> >> only picked up with "full" restart, with "systemd" in this case.
> >>
> >> and when done, then server-postifx supplied ne
On 23/07/2023 16:00, Wietse Venema wrote:
lejeczek via Postfix-users:
-> $ postfix reload # did not work, new certs/files where
only picked up with "full" restart, with "systemd" in this case.
and when done, then server-postifx supplied new certs
immediately - clients where happy.
I was thin
On 23/07/2023 16:00, Wietse Venema wrote:
lejeczek via Postfix-users:
-> $ postfix reload # did not work, new certs/files where
only picked up with "full" restart, with "systemd" in this case.
and when done, then server-postifx supplied new certs
immediately - clients where happy.
I was thi
lejeczek via Postfix-users:
> -> $ postfix reload # did not work, new certs/files where
> only picked up with "full" restart, with "systemd" in this case.
>
> and when done, then server-postifx supplied new certs
> immediately - clients where happy.
>
> I was thinking "glitch" for perhaps SElin
On 20/07/2023 21:14, Viktor Dukhovni via Postfix-users wrote:
On Thu, Jul 20, 2023 at 07:11:41PM +0200, lejeczek via Postfix-users wrote:
I use what I believe is pretty much vanilla-common setup - snis.map I
had to restart the deamon/server in order for _postix_ to notice new
certs - natural
12 matches
Mail list logo
