Dovecot proxy ignores trusted root certificate store

Alex Bulan avb at
Tue Sep 22 19:01:20 UTC 2015

On Tue, 22 Sep 2015, Timo Sirainen wrote:

> Yeah. The ssl_client_ca_file was implemented later than the SSL proxying 
> code. I think this may be something that needs to wait for v2.3 to get 
> fixed. v2.3 hopefully removes the duplicated ssl code and uses 
> lib-ssl-iostream for proxying also, which makes this easier to 
> implement.

Thanks, Timo.  I'll use the ssl_ca workaround for now.

More information about the dovecot mailing list