W dniu 2017-09-13 o 22:11, Viktor Dukhovni pisze:
>> On Sep 13, 2017, at 3:43 PM, Łukasz Wąsikowski wrote:
>>
>>> See below for OpenSSL 1.0.2 or later. Earlier versions don't
>>> have the "-verify_hostname" option, you can delete it if you
>>> like, and omit that part of the certificate check, i
> On Sep 13, 2017, at 3:43 PM, Łukasz Wąsikowski wrote:
>
>> See below for OpenSSL 1.0.2 or later. Earlier versions don't
>> have the "-verify_hostname" option, you can delete it if you
>> like, and omit that part of the certificate check, in which
>> case the code will also work for OpenSSL 1.
W dniu 2017-09-11 o 18:25, Viktor Dukhovni pisze:
>
>> On Sep 11, 2017, at 5:21 AM, Dominic Raferd wrote:
>>
>> Does anyone know a way to detect if the certificate currently being used by
>> Postfix and/or Dovecot is nearing expiry (esp. in case they haven't picked
>> up the updated letsencrypt
On Wed, Sep 13, 2017 at 09:09:36AM +0300, Dominic Raferd wrote:
> On 11 September 2017 at 19:25, Viktor Dukhovni
> wrote:
>
> - what do I specify for the CAfile?
That depends on where the operating system distribution squirrels
away the usual root CA certificates. You can typically find out
wh
On 11 September 2017 at 19:25, Viktor Dukhovni
wrote:
>
> > On Sep 11, 2017, at 5:21 AM, Dominic Raferd
> wrote:
> >
> > Does anyone know a way to detect if the certificate currently being used
> by Postfix and/or Dovecot is nearing expiry (esp. in case they haven't
> picked up the updated letse
