But if I enable SSL, the doveadm backup on the remote machine hangs. And the destination machine prints the following two massages in the logs :
Aug 4 17:10:31 bbb dovecot: doveadm: Error: Corrupted SSL parameters file in state_dir: ssl-parameters.dat - disabling SSL 360 Aug 4 17:10:31 bbb dovecot: doveadm: Error: Couldn't initialize SSL parameters, disabling SSL
BUT :
(1) /var/lib/dovecot/ssl-parameters.dat *DOES* exist. and (2) If I delete it and restart dovecot, it successully re-creates it, as per Aug 4 17:02:32 bbb dovecot: ssl-params: Generating SSL parameters Aug 4 17:06:58 bbb dovecot: ssl-params: SSL parameters regeneration completed
Your timestamps suggest you did this the other way around.
Aki mentioned that issue is/will be fixed, but DH parameters can take a *very* long time to generate if you're unlucky, so maybe it's a timing issue (using the service before the DH parameters was ready.)
Joseph Tam <jtam.home@gmail.com>