Greg Pfister writes:
Thanks. I'll try that. All the research that I've come up with shows that the cert and key file goes into one pem file (which I have) for the TLS_CERTFILE. However, I thought the TLS_TRUSTCERTS file included the chain. The server is production, so I don't want to interfere with operation until off hours.Here's what I was working from:<URL:https://www.sslshopper.com/courier-imap-ssl-installation- instructions.html>https://www.sslshopper.com/courier-imap-ssl-installation- instructions.htmland<URL:https://cheapsslsecurity.com/blog/install-ssl-certificate-courier-imap- server/>https://cheapsslsecurity.com/blog/install-ssl-certificate-courier- imap-server/
All of that information is wrong.
You'll notice that in both of these, the show the TLS_TRUSTCERTS as intermedi ates.
I also noticed that all of these tell me to set the protocol implementation to either "SSL3" or "TLS1", which have been deprecated quite a while ago, as insecure.
Do not do that. Leave the protocol setting at its default.
pgpEXjfskmB8F.pgp
Description: PGP signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Courier-imap mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
