Dovecot serving incorrect certificate
Antonio Leding
tech at leding.net
Sun Jul 26 00:02:16 EEST 2020
Hello all,
I have a Dovecot (v2.3.10.1) + Postfix (v3.5.3) both cfg; d to use TLS however each using different certificates. In addition, I have cfg’d a DNS CNAME that points to the server A record. For example,
mail.example.com (A) —> 1.2.3.4
alias.example.con (CNAME) —> mail.example.com
When setting up a new account in Apple Mail, if I specify the server name as the “Host Name” (i.e. mil server), the cert that is cfg’d in Dovecot is received and everything works fine. However, if I instead use the alias CNAME as the “Host Name”, then the cert for Postfix is sent to the client. This causes issues because I do not have the CNAME in the SAN of the Postfix certificate.
I doubt this is a bug because I have to think others have employed a similar configuration so I must be missing something here — any thoughts?
Thanks in advance...
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://dovecot.org/pipermail/dovecot/attachments/20200725/173e268b/attachment.html>
More information about the dovecot
mailing list