Fixed SSL

author Giorgio Ravera <giorgio.ravera@gmail.com>

Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)

committer Giorgio Ravera <giorgio.ravera@gmail.com>

Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)
author Giorgio Ravera <giorgio.ravera@gmail.com>
Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)
committer Giorgio Ravera <giorgio.ravera@gmail.com>
Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)
diff --git a/main.cf b/main.cf

index 9c2700f27cc057a5bc4d7e9292e9974725c7f3bf..76e2ec6ce99cc6a3834d30dc0f54cf0c8da9128c 100644 (file)
--- a/main.cf
+++ b/main.cf
@@ -88,8 +88,9 @@ smtpd_use_tls = yes
  #smtpd_tls_key_file = /etc/ssl/giorgioravera.it/certs/mail.giorgioravera.it.key
  #smtpd_tls_cert_file = /etc/ssl/giorgioravera.it/certs/mail.giorgioravera.it.crt
  #smtpd_tls_CAfile = /etc/ssl/giorgioravera.it/ca.crt
-smtpd_tls_cert_file = /etc/letsencrypt/live/server.giorgioravera.it/fullchain.pem
-smtpd_tls_key_file = /etc/letsencrypt/live/server.giorgioravera.it/privkey.pem
+smtpd_tls_cert_file = /etc/ssl/giorgioravera.it/cert.pem
+smtpd_tls_key_file = /etc/ssl/giorgioravera.it/privkey.pem
+smtpd_tls_CAfile = /etc/ssl/giorgioravera.it/chain.pem
  #smtpd_tls_loglevel = 2
  smtpd_tls_received_header = no
  smtpd_tls_session_cache_timeout = 3600s
@@ -107,7 +108,8 @@ smtpd_client_restrictions = permit_mynetworks,
  smtpd_delay_reject = yes
  smtpd_helo_required = yes
  # Don't talk to mail systems that don't know their own hostname.
-smtpd_helo_restrictions = reject_invalid_helo_hostname,
+smtpd_helo_restrictions = permit_mynetworks,
+        reject_invalid_helo_hostname,
         reject_non_fqdn_helo_hostname,
         reject_unknown_helo_hostname
  # Don't accept mail from domains that don't exist.
author	Giorgio Ravera <giorgio.ravera@gmail.com>
	Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)
committer	Giorgio Ravera <giorgio.ravera@gmail.com>
	Thu, 2 Feb 2023 01:57:29 +0000 (02:57 +0100)