23 Jan
2025
23 Jan
'25
10:21 a.m.
dovecot starts as root, and drops priveleges later, so group it non rooted is a security problem on its own :)
certbot creates letencrypt pem files owned by root and grouped root, only the private key cant be readed by other users then root
wtf letsencrypt still requires root?? What an amateur club there. I am using this this, without root, than you can easily switch to zerossl. https://github.com/acmesh-official/acme.sh