<html><head><style id="outgoing-font-settings">#response_container_BBPPID{font-family: initial;font-size: initial;color: initial;}</style></head><body style="background-color: rgb(255, 255, 255); background-image: initial; line-height: initial;"><div id="response_container_BBPPID" style="outline:none" dir="auto" contenteditable="false"> <div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"> As it turns out my cert was renewed Oct 3. I usually don't reply to these "lists" from my phone since I risk the wrath of people who hate top posting. I usually reply from a Linux desktop, not the phone, where I can bottom post. </div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%">All that said, my phone mail client asked me if I trusted the cert. It was the latest cert since it matches the date on my website. </div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%">To be fair, I did a backup of the server on the 4th which involved a reboot, which would have loaded a new cert. But I can't possibly be that fortunate all the time. </div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%">In need to look at that bash script that renews the cert. Maybe it forces a systemctl reload. </div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%">I could never get that Python LetsEncrypt code to work on Centos. The LetsEncrypt forum suggested the bash script. </div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%">https://github.com/acmesh-official/acme.sh</div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div><div id="BB10_response_div_BBPPID" dir="auto" style="width:100%"><br></div> <div id="response_div_spacer_BBPPID" dir="auto" style="width:100%"> <br></div> <div id="blackberry_signature_BBPPID" dir="auto"> <div id="_signaturePlaceholder_BBPPID" dir="auto"></div> </div></div><div id="_original_msg_header_BBPPID" dir="auto"> <table id="_pHCWrapper_BBPPID" width="100%" style="border-spacing: 0px; display: table; outline: none;" contenteditable="false"><tbody><tr><td colspan="2"> <div style="border-right:none;border-bottom:none;border-left:none;border-top:1pt solid rgb( 181 , 196 , 223 );padding:3pt 0in 0in;font-family:'tahoma' , 'bb alpha sans' , 'slate pro';font-size:10pt"> <div id="from"><b>From:</b> reio@mrstuudio.ee</div><div id="sent"><b>Sent:</b> October 9, 2020 2:57 AM</div><div id="to"><b>To:</b> dovecot@dovecot.org</div><div id="subject"><b>Subject:</b> Re: Feature request.</div></div></td></tr></tbody></table> <br> </div><div dir="auto" style="outline:none" contenteditable="false"><div><div class="moz-cite-prefix">On 09/10/2020 12:52, lists wrote:<br>
</div><blockquote type="cite">
<pre class="moz-quote-pre">I have to say I'm totally baffled since I do nothing when LetsEncrypt renews the certificate.
I know the cert has been updated because the mail clients asks me if I trust the certificate.</pre>
</blockquote><br></div>
Curious. The mail clients really shouldn't ask anything when
encountering a valid certificate.<br>
<br>
Are you sure the client isn't asking you to trust an expired
certificate?<br>
<br>
Reio<br>
<div class="moz-signature">
<p style="font-family:'arial' , sans-serif">
<br>
<br>
</p>
</div>
</div></body></html>