<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"></head><body><div>Does ssl_cert file contain intermediates?</div><div><br></div><div><br></div><div><br></div><div id="composer_signature"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">---<div>Aki Tuomi</div><div>Dovecot oy</div></div><div><br></div><div style="font-size:100%;color:#000000"><!-- originalMessage --><div>-------- Original message --------</div><div>From: Marc Perkel <marc@perkel.com> </div><div>Date: 21/05/2018  16:32  (GMT+02:00) </div><div>To: dovecot@dovecot.org </div><div>Subject: SSL error after upgrading to 2.31 </div><div><br></div></div>
    <span style="color: rgb(0, 0, 0); font-family: "Lucida
      Grande", Verdana, "Lucida Sans Regular",
      "Lucida Sans Unicode", Arial, sans-serif; font-size:
      11px; font-style: normal; font-variant-ligatures: normal;
      font-variant-caps: normal; font-weight: 400; letter-spacing:
      normal; orphans: 2; text-align: left; text-indent: 0px;
      text-transform: none; white-space: normal; widows: 2;
      word-spacing: 0px; -webkit-text-stroke-width: 0px;
      background-color: rgb(255, 255, 255); text-decoration-style:
      initial; text-decoration-color: initial; display: inline
      !important; float: none;">After upgrading to 2.31 I'm getting this
      error. Not sure what I'm doing wrong.<br>
      <br>
      No (No signatures could be verified because the chain contains
      only one certificate and it is not self signed.)</span><br>
    <br>
    <br>
    ssl = yes<br>
    <br>
    ssl_cert = </etc/exim/certs/ctyme.com.crt<br>
    ssl_key = </etc/exim/certs/ctyme.com.key<br>
    ssl_ca = </etc/exim/certs/ca.crt<br>
    <br>
    <br>
    local mail.ctyme.com {<br>
      protocol imap {<br>
        ssl_cert = </etc/exim/certs/ctyme.com.crt<br>
        ssl_key = </etc/exim/certs/ctyme.com.key<br>
        ssl_ca = </etc/exim/certs/ca.crt<br>
      }<br>
    <br>
      protocol pop3 {<br>
        ssl_cert = </etc/exim/certs/ctyme.com.crt<br>
        ssl_key = </etc/exim/certs/ctyme.com.key<br>
        ssl_ca = </etc/exim/certs/ca.crt<br>
      }<br>
    }<br>
    <br>
    local mail.junkemailfilter.com {<br>
      protocol imap {<br>
        ssl_cert = </etc/exim/certs/junkemailfilter.com.crt<br>
        ssl_key = </etc/exim/certs/junkemailfilter.com.key<br>
        ssl_ca = </etc/exim/certs/ca.crt<br>
      }<br>
    <br>
      protocol pop3 {<br>
        ssl_cert = </etc/exim/certs/junkemailfilter.com.crt<br>
        ssl_key = </etc/exim/certs/junkemailfilter.com.key<br>
        ssl_ca = </etc/exim/certs/ca.crt<br>
      }<br>
    }<br>
  </body></html>