Thank you. It’s appreciated.
I’ll work on the other issue and see if I can solve it.
Regards,
Wayne
Wayne Spivak
SBA.NET.WEB
A div of SBA * Consulting LTD
Tel LI: +1 (516) 221-3306
NY Tel: +1 (212) 487-5085
Tel CT: +1-860-760-0250
Fax: +1 (516) 387-1184
mailto:wspi...@sbaconsulting
On Wed, Jan 19, 2022 at 05:07:38PM -0500, Wayne Spivak wrote:
> That was the solution for TLS failing when I start postfix:
>
> perl -lne print file1 file2 file3
And now your server has the intermediate issuer in its chain, and
verification works:
posttls-finger: mcq.sbanetweb.com[96.224.25
postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 04:40:29PM -0500, Wayne Spivak wrote:
> I am creating the file by using cat file1 file2 file3 > ws.pem (which
> is my test combo file)
Does the last "line" of each of the files end in a newlin
On 1/19/22 16:46, Viktor Dukhovni wrote:
Only "-l dane" can produce a "Verified" result with no explicit trust
...
the default is to not trust any CAs.
ah. thx! o/
posttls-finger -cC -lsecure -F /etc/ssl/certs/ca-bundle.trust.crt
'[mx.example.com]'
posttls-finger: mx.example.com[X
On Wed, Jan 19, 2022 at 04:47:55PM -0500, Wayne Spivak wrote:
> >My file looks like
>
> -BEGIN PRIVATE KEY-
> ... base64 data ...
> -END PRIVATE KEY-
> -BEGIN CERTIFICATE-
> ... base64 data ...
> -END CERTIFICATE--BEGIN CERTIFICATE- (THIS IS HOW
On Wed, Jan 19, 2022 at 04:40:29PM -0500, Wayne Spivak wrote:
> I am creating the file by using cat file1 file2 file3 > ws.pem (which
> is my test combo file)
Does the last "line" of each of the files end in a newline character?
A missing newline at the end of file1 or file2 will corrupt the
conc
Clearly /etc/postfix/tls/ws.pem is malformed. How are you constructing this
file? It should look like (each line should end with a newline character,
i.e. LF not CR or CR+LF):
>My file looks like
-BEGIN PRIVATE KEY-
... base64 data ...
-END PRIVATE KEY-
-BEGIN CERTI
On Wed, Jan 19, 2022 at 04:21:13PM -0500, PGNet Dev wrote:
> following along & just curious, i checked a postfix 3.6.3 here that's using
> LetsEncrypt certs, where conf includes
>
> smtpd_tls_cert_file = /usr/local/etc/postfix/sec/fullchain.rsa.crt.pem
> smtpd_tls_eccert_file = /usr/
ch of short hand, sorry)
-Original Message-
From: owner-postfix-us...@postfix.org On
Behalf Of Viktor Dukhovni
Sent: Wednesday, January 19, 2022 4:37 PM
To: postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 04:23:58PM -0500, Wayne Spivak wrote:
>
On Wed, Jan 19, 2022 at 04:23:58PM -0500, Wayne Spivak wrote:
> This is with the new combo certificate
>
> Mail log:
> Jan 19 14:52:55 mcq postfix/smtpd[156224]: warning: TLS library problem:
> error:0908F066:PEM routines:get_header_and_data:bad end
> line:crypto/pem/pem_lib.c:856:
> Jan 19 14:
Missing logs:
This is with the new combo certificate
Mail log:
Jan 19 14:52:55 mcq postfix/smtpd[156224]: warning: TLS library problem:
error:0908F066:PEM routines:get_header_and_data:bad end
line:crypto/pem/pem_lib.c:856:
Jan 19 14:52:55 mcq postfix/smtpd[156224]: warning: error loading private
following along & just curious, i checked a postfix 3.6.3 here that's using
LetsEncrypt certs, where conf includes
smtpd_tls_cert_file = /usr/local/etc/postfix/sec/fullchain.rsa.crt.pem
smtpd_tls_eccert_file = /usr/local/etc/postfix/sec/fullchain.ec.crt.pem
smtpd_tls_ecke
I'll do this one step at a time (I need to do other things)..
Again, thank you.
I created the combo with
-- Begin Priviate
--End Private
--Begin Certificate
--End Certificate
-- Begin Intermediate
-- End Intermediate
I have one multi-domain certificate, however for email all the emails on
ser
On Wed, Jan 19, 2022 at 03:22:36PM -0500, Wayne Spivak wrote:
> I set the server back, because otherwise my email wasn't working properly.
And for some reason decided to not explain (show logs, ...) of what "not
working properly" means. :-( Crystal ball very cloudy on my end...
> smtp_tls_CAfil
19, 2022 3:17 PM
To: postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 03:07:29PM -0500, Wayne Spivak wrote:
> Still not working...
That's not particularly illuminating. You'll need to reply with "postconf
-nf" and "postconf -Mf&q
On Wed, Jan 19, 2022 at 03:07:29PM -0500, Wayne Spivak wrote:
> Still not working...
That's not particularly illuminating. You'll need to reply with
"postconf -nf" and "postconf -Mf" output (inserted verbatim without any
changes in linebreaks or other whitespace).
Also with the output of (assum
16 matches
Mail list logo
