John,
* Viktor Dukhovni via Postfix-users :
> On Tue, Jul 02, 2024 at 11:24:53PM -0400, John Levine via Postfix-users wrote:
>
> > >Have you posted "postconf -nf" and "postconf -Mf" output (with as-is
> > >whitespace, including line-breaks)?
> >
> > I will, see below.
>
> Thanks, generally best
On Wed, Jul 03, 2024 at 01:43:23PM +0200, Patrick Ben Koetter via Postfix-users
wrote:
> > If not, or, in any case, you might specify
> >
> > saslauthd_path: /var/run/saslauthd/mux
> >
> > in the "smtpd.conf" file, once it is in the correct (for Debian)
> > directory. Note that this settin
Use strace to find out what pathname Postfix (through libsasl) is
trying to connect to.
1 - Connect to Postfix with gnutls-cli or "openssl s_client".
2 - Run "strace -p pid-of-smtpd -o output-file".
3 - Send EHLO, AUTH, QUIT.
4 - Look in the trace created in [2] and populated in [3].
W
On 02.07.24 17:15, John R. Levine via Postfix-users wrote:
[...]
In main.cf it has the debian default config, and I added this:
smtp_sasl_type = cyrus
smtpd_sasl_path = smtpd
cyrus_sasl_config_path = /usr/lib/sasl2
Try commenting this out.
Per the instructions in the postfix SASL page and th
It appears that Patrick Ben Koetter via Postfix-users said:
>IIRC Debian patches Postfix and expects smtpd.conf to be located in
>/etc/postfix/sasl/smtpd.conf. Have you tried this?
I just did and it worked.
Thanks, everyone. Now I have to back out my hacks one by one and make sure
I understand
On 2024-06-27 05:24, Viktor Dukhovni via Postfix-users wrote:
> Publishing just "R10" will soon fail, when you get a cert from "R11" or
> one of the backup issuers R12, R13 or R14. You MUST publish them all to
> avoid sudden breakage surprises.
Isn't it easier to just used self-signed certificat
On Wed, Jul 03, 2024 at 05:12:35PM -0700, Matt Kinni via Postfix-users
wrote:
> On 2024-06-27 05:24, Viktor Dukhovni via Postfix-users wrote:
>
> > Publishing just "R10" will soon fail, when you get a cert from "R11" or
> > one of the backup issuers R12, R13 or R14. You MUST publish them all t
On 2024-07-03 17:25, raf via Postfix-users wrote:
> So it's not really easier to just used self-signed
> certificates since you'll want a CA-signed certificate
> for submission anyway, and you can have the same key
> for both.
Well I control what devices use the submission port, so I can also just
Does LE company have commercial revenue? I thought it was a non-profit
organization.
generate yourself and don't have to deal with LE's high turnover
intermediaries nonsense.
--
Jeff Pang
j...@simplemail.co.in
___
Postfix-users mailing list -- post
I think these are the main things I learned:
* Debian moved the sasl configuration file to a nonstandard place
/etc/postfix/sasl/smtpd.conf
Dunno how I would have figured that out if someone here hadn't told me.
* The socket that the sasl daemon uses has to be inside the postfix
chroot, by defaul
On Wed, Jul 03, 2024 at 09:48:06PM -0400, John Levine via Postfix-users wrote:
> * Debian moved the sasl configuration file to a nonstandard place
> /etc/postfix/sasl/smtpd.conf
> Dunno how I would have figured that out if someone here hadn't told me.
This is unfortunate, and I rather hope that S
On Thu, Jun 27, 2024 at 08:32:08PM +0200, Gerd Hoerst via Postfix-users wrote:
> I had the setup with R3 running for years w/o problems but now i have also
> R11/12/13/14 as backup entries
I hope that also includes R10. It is simplest/best to force an
expedited renewal, then you'll get one of t
12 matches
Mail list logo
