Date: Wed, 13 Jul 2005 23:46:33 +0300 From: vladone vladone@spaingsm.com Subject: [Dovecot] problem with server certificate: dovectot.pem
I have an mail server with postfix and dovecot. All works fine, but now is change my domain. After changed configurations i can receive (or send) mail without STARTTLS, but when i try to use this option i receive: "TLS handshake failure. Invalid server certificate (Key material mismatch)"
I dont know what is this. I use certificate that is generate with script for dovecot (that work at begining). Even i try to rebuild this certificate acording with new domain but nothing. Where is my problem?
Yes, of course. Certificates are made out to a particular hostname (e.g. smtp.wahtever.com), and if you change your server hostname or move it to another server, a new certificate will have to be made out to the new hostname.
You could also configure your client ignore certificate mismatches, but this wouldn't be the best option.
Joseph Tam tam@math.ubc.ca