On 14 May 2025, at 12:06, Bill Cole via Postfix-users wrote:
>> OTOH that setup doesn't seem so simple in that (AFAICT) neither certbot nor
>> acme.sh can generate such a combined file.
>
> Really?
>
> $ postconf smtpd_tls_eccert_file
> smtpd_tls_eccert_file = /var/root/.acme.sh/scconsult.com_ecc
On 13 May 2025, at 13:02, Bill Cole via Postfix-users wrote:
> The simplest setup is to have the full chain in a single file referred to by
> smtpd_tls_cert_file and NO smtpd_tls_chain_file.
OTOH that setup doesn't seem so simple in that (AFAICT) neither certbot nor
acme.sh can generate such a
Hi all,
The docs here:
https://www.postfix.org/postconf.5.html
contain the string "netscape" a few times, and in each case the meaning is not
clear (IMHO).
example: "Some clients (Netscape 4 at least) have a bug that..."
Is it referring to Netscape Navigator? Version 4 was ages ago.
Is it r
On 24 Mar 2025, at 4:06, A. Schulze via Postfix-users wrote:
> Sean McBride via Postfix-users:
>
>> It can. It's probably a better idea than using OpenDKIM, because that
>> project seems dead as best as I can tell, it has had no commits for 7 years:
>>
>> http
On 7 Mar 2025, at 16:27, Andreas Kuhlen via Postfix-users wrote:
> Can the rspamd milter do the dkim signing
It can. It's probably a better idea than using OpenDKIM, because that project
seems dead as best as I can tell, it has had no commits for 7 years:
https://github.com/trusteddomainprojec
Hi all,
On this page:
http://www.postfix.org/SASL_README.html
the link to:
http://wiki.dovecot.org/
needs updating because that link is dead.
Cheers,
Sean
___
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to p
On 9 Feb 2025, at 10:00, Wietse Venema via Postfix-users wrote:
> Please use a real resolver. RedHat tooling may be fine for desktoops
> but not for infrastructure. That's the polite version.
Gotcha, thanks.
Alternatively, if I use FreeBSD, is the local-unbound(8) that's installed in
base usabl
On 23 Jan 2025, at 9:56, Bill Cole via Postfix-users wrote:
Your solution is to run a local, caching, fully-recursive name
resolver. The simplest way to do that is with the Unbound resolver.
This is a best practice for all mail servers because MTAs do a lot of
DNS and should not be using a res
Hi all,
I've been setting up a fresh postfix server, and I've really appreciated
how great the docs are. In the spirit of making them even better, I'd
like to share a comment/suggestion.
If I correctly understand the messy history of port 465 vs 587, for
submission port 587 with StartTLS was
On Thu, 29 Jul 2021 22:17:49 +1000, raf said:
>That second sentence sounds to me like a definite
>statement that an SMTP connection that doesn't initiate
>STARTTLS will not be able to send email. At least, I
>can't see how else to interpret those words.
Which is an odd thing considering, accordin
10 matches
Mail list logo
