Hi Eric,
Hi Jaime,
thanks for your suggestions.
I tested if the file was there, if it is a valid certificate, I have a
script to create the file on renewals, all that is done.
What I have unusual is: My certfile is a link.
When testing the certificate by:
openssl x509 -noout -in
Just throwing a +1 for Eric asking about the servercert.pem file. You have
to copy the Let's Encrypt cert over to there (and also have it copy it over
each time the cert is renewed, approximately every 90 days). I have some
shell scripts I'm running weekly to handle making sure the Let'sEncrypt
Hi Andreas,
I'm not sure if you're a coder, but here's the section of code in
qmail-smtpd.c that sends STARTTLS upon meeting certain criteria.
#ifdef TLS
if (!ssl && (stat("control/servercert.pem",) == 0))
out("\r\n250-STARTTLS");
#endif
Looks like you need 1) TLS defined, 2) ssl
Hello List,
since some time my qmailserver does not offer STARTTLS on ports 25 and 587
Dovecot offers STARTTLS, everything is fine.
Qmail does not.
I have another qmailserver with on CENT working fine and offering STARTTLS,
tlsserverciphers are the same, same openssl- 1.0.1e-57
Both