Hi,
2024-04-04 17:32 Paul van der Vlis via
Info:
Difficult was also the fact that Cyrus runs completely as user Cyrus, so it cannot read the certificates from certbot.
I have made three copies of the same certificate:
- http.pem -rw-r--r-- 644 me:wheel — for hiawatha.conf (HTTP server);
- imap.cert -r--r--r-- 444 cyrus:cyrus — for imapd.conf (Cyrus
server) with
imap.key -r-------- 400 cyrus:cyrus — its private key; - smtp.cert -r--r--r-- 444 root:mail — for myhost.cf (Sendmail
server) with
smtp.key -r-------- 400 root:mail — its private key.
Everything works smoothly, although I do not know if this is the best way — I am not an experienced sysadmin.
--
Vladas Palubinskas
