I solved by adding 

 
smtpd_tls_CAfile = /etc/letsencrypt/live/dpsoftware.org/fullchain.pem

to my main.cf postfix configuration file.

NICE!!!!

 


Il 2017-08-09 17:33 Davide Perini ha scritto:

I have generated the certificates with Let's Encrypt using this guide:

https://www.linode.com/docs/security/ssl/install-lets-encrypt-to-create-ssl-certificates
 

Thunderbird does not complain anymore about self signed certificate and neither Chrome...

...but Roundcubemail continue to exit with an auth error when trying to send an email, this is the error in the maillog:
Aug 9 17:26:52 netstar postfix/smtpd[12278]: warning: TLS library problem: 12278:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1275:SSL alert number 48:


Can you help me please?

Thanks,
Davide


Il 2017-08-09 10:45 Vincent Van Houtte ha scritto:

There is a certain level of added risk if you do not verify the certificate, but for non-critical systems (that are secured properly nonetheless) I would assess this risk as acceptable.

On the other hand: since Let's Encrypt started handing out free certificates, I don't see any reason to hold on to self-signed certificates. The process to acquire a new certificate and to periodically renew such certificate is pretty easy.

Kr,
Vincent

Verzonden vanaf mijn Sony Xperia™-smartphone

---- Davide Perini schreef ----

Ok I switched to the SMTP auth but since I have a self signed certificate I have added those lines to my default.inc.php file:

$config['smtp_conn_options'] = array(
  'ssl' => array(
    'verify_peer' => false,
    'verify_peer_name' => false,
  ),
);

 

and now it works.

is this ok or I am creating some security problems or other type of problems?


Thanks,
Davide

Il 2017-08-09 06:10 Vincent Van Houtte ha scritto:

Do you mean you're using php's mail()-function to send emails? In that case I suggest you read the changelog before you upgrade...

Kr,
Vincent

Verzonden vanaf mijn Sony Xperia™-smartphone

---- Davide Perini schreef ----

Nothing changed apart the roundcube version.



In data 8 agosto 2017 22:39:02 mick crane <mick.crane@gmail.com> ha scritto:

> On 2017-08-08 21:07, Davide Perini wrote:
>> Hi all,
>> I use roundcubemail since years, I am running it on the latest Centos.
>>
>> As soon as I upgraded it to the 1.3 version I can't send email anymore
>> using phpmail.
>>
>> When I try to send an email it says:
>> "SMTP Error (554): ... "email@email.it" non riuscito (5.7.1
>> <sblan@email.it>: Relay access denied)"
>>
>> Can you help me please?
>
> if ISP some of them  won't let you use "un-registered email addresses or
> other SMTP servers.
> maybe it is something like this if something changed ?
>
>
> mick
>
>
>
> ----------
> _______________________________________________
> Roundcube Users mailing list
> users@lists.roundcube.net
> http://lists.roundcube.net/mailman/listinfo/users

_______________________________________________
Roundcube Users mailing list
users@lists.roundcube.net
http://lists.roundcube.net/mailman/listinfo/users


_______________________________________________
Roundcube Users mailing list
users@lists.roundcube.net
http://lists.roundcube.net/mailman/listinfo/users