Dovecot proxy ignores trusted root certificate store
Mihai Badici
mihai at badici.ro
Mon Sep 21 06:00:58 UTC 2015
On Monday 21 September 2015 01:53:53 Alex Bulan wrote:
> Dovecot v2.2.18
> OS: FreeBSD 10.1/amd64
>
> Dovecot in proxy mode ignores the root certificate store and can't verify
> the backend's SSL certificate.
>
> I've pointed ssl_client_ca_file to my root certificate store, but I
> suspect ssl_client_ca_file is only used in imapc context. It seems to be
> ignored in proxy context.
>
> doveconf -n ssl_client_ca_file:
> ssl_client_ca_file = /usr/local/share/certs/ca-root-nss.crt
I think the correct syntax is :
ssl_ca = < /etc/ssl/certs/cacert.pem
For all kind of ssl_xyz files
Mihai Badici[1]
--------
[1] http://mihai.badici.ro
More information about the dovecot
mailing list