On 8/22/2012 8:56 AM, Eric Covener wrote: >> Dovecot dropped its TLS capabilities, but it still started >> the server and bound to the non-secure port. > > I'd personally prefer the server fail startup rather than operate w/o SSL. While that may be, this preference should not be assumed. Even if the current behavior (failing to start under said circumstances) is made the default, I would prefer this to be a configurable behavior. My post's primary purpose was to underscore the fact that Apache fails *silently* under the key/cert mismatch scenario. Perhaps with a sufficiently high log-level this error would be revealed. But even if that is so, such a critical failure should be logged regardless of the setting. Thank you, -Ben > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|