Dovecot can't find RSA certificate

Avatar forum:MawBTS 6 months, 1 week ago

Hi, I'm attempting to set up an email with a self-signed certificate, using the process outlined here: https://linode.com/docs/security/ssl/cr … nd-ubuntu/">https://linode.com/docs/security/ssl/create-a-self-signed-certificate-on-debian-and-ubuntu/

The problem is, dovecot keeps looking for the certificate in /etc/dovecot/dovecot.pem, even after I've configured the path in 10-ssl.conf as follows:

ssl_cert =

ssl_key =

Also, it assumes that the certificate is a .pem file, but the pair created are obviously a .crt and a .key. Is this a problem?

A fuller sample from my error log:

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18184]: warning: cannot get RSA certificate from file "/etc/dovecot/dovecot.pem": disabling TLS support

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18184]: warning: TLS library problem: error:02001002:system library:fopen:No such file or directory:bss_file.c:398:fopen('/etc/dovecot/dovecot.p

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18184]: warning: TLS library problem: error:20074002:BIO routines:FILECTRL:system lib:bssfile.c:400:

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18184]: warning: TLS library problem: error:140DC002:SSL routines:SSLCTXusecertificatechainfile:system lib:sslrsa.c:701:

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18182]: connect from 220-235-158-153.dyn.iinet.net.au[220.235.158.153]

Feb 12 21:03:26 sheffield postfix/submission/smtpd[18184]: connect from 220-235-158-153.dyn.iinet.net.au[220.235.158.153]

Feb 12 21:03:27 sheffield postfix/submission/smtpd[18182]: improper command pipelining after EHLO from 220-235-158-153.dyn.iinet.net.au[220.235.158.153]: QUIT\r\n

Feb 12 21:03:27 sheffield postfix/submission/smtpd[18182]: disconnect from 220-235-158-153.dyn.iinet.net.au[220.235.158.153] ehlo=1 quit=1 commands=2

Feb 12 21:03:27 sheffield postfix/submission/smtpd[18184]: improper command pipelining after EHLO from 220-235-158-153.dyn.iinet.net.au[220.235.158.153]: QUIT\r\n

Feb 12 21:03:27 sheffield postfix/submission/smtpd[18184]: disconnect from 220-235-158-153.dyn.iinet.net.au[220.235.158.153] ehlo=1 quit=1 commands=2

Any suggestions?

Thanks

  • Ben

2 Replies

Damn, I'm an idiot. How didn't I see those?

Thanks!

# signs are comments.

ssl_cert =

ssl_key =

Remove them from the front of these lines and restart.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct