On 6/09/25 22:03, Aki Tuomi via dovecot wrote:
We are looking into resigning 2.4.1 RHEL8 with the RSA key for 2.3.
Suggestion: Rather than have a separate key for each major release of
Dovecot instead you could have a separate key for each major release of
EL. This also has the advantage that you can time the expiration of
your key to correspond with the EOL of that EL release, so:
* An EL8 key that expires on or after May 31 2029.
* An EL9 key that expires on or after May 31 2032.
* An EL10 key that expires on or after May 31 2035.
You could also do something similar for other distros.
Peter
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
