MRatWork Forum by Mustafa Ramadhan

Sawo Project - Kloxo-MR Discussions => Kloxo-MR Bugs and Requests => Topic started by: Spacedust on 2019-01-30, 23:10:59

Title: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-01-30, 23:10:59
It shows something like this:

spamdyke[5784]: ERROR(tls_init_inner()@tls.c:236): unable to load SSL/TLS certificate from file: /var/qmail/control/servercert.pem : The operation failed due to an I/O error, Unexpected EOF found, error:0200100D:lib(2):func(1):reason(13), error:20074002:lib(32):func(116):reason(2), error:140DC002:lib(20):func(220):reason(2)

Receving mail works fine. Same cert works great for Kloxo and web server.
Title: Re: Unable to send mail with letsencrypt cert
Post by: azzureal on 2019-02-02, 08:50:55
How about to desable spmakey?
Title: Re: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-02-02, 18:54:23
Doesn't help :(
Title: Re: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-02-05, 21:34:30
The issue here is that /var/qmail/control/servercert.pem uses symlink as root while it should be root:qmail owner then it works well, but you need to copy the cert file to /var/qmail/control directory.
Title: Re: Unable to send mail with letsencrypt cert
Post by: amitkumar on 2019-02-07, 11:16:41
Great to hear that you solved the issue and provide us solution :)
Title: Re: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-02-19, 19:01:16
However the cert will expire one day. So you either need to add cron job to copy file every 3 months or do it manually.
Title: Re: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-05-04, 12:27:58
Example cron:

0 0 1 * * cp -rf /home/kloxo/ssl/domain.com.pem /var/qmail/control/servercert.pem
Title: Re: Unable to send mail with letsencrypt cert
Post by: MRatWork on 2019-05-04, 23:30:52
Why not using symlink instead copy?
Title: Re: Unable to send mail with letsencrypt cert
Post by: Spacedust on 2019-05-05, 16:22:33
Symlink doesn't work well for qmail. It ignores it. Must be physical file sitting out there.