Maybe I will post example of what I am doing.
OpenBSD-current amd64 March 16th, 2016.
Getmail and imap over TLS.
$ cat /etc/relayd.conf
tcp protocol proto_wp {
tls ca file "/etc/ssl/cert.pem"
pass
}
relay connect_to_mail_wp {
protocol proto_wp
listen on 127.0.0.1 port 5555
forward with tls to imap.wp.pl port 993
}
$
cat getmailrc
[retriever]
type = SimpleIMAPRetriever
server = 127.0.0.1
port = 5555
username = censored
password = censored
[destination]
type = Maildir
path = censored
[options]
delete = false
message_log = censored
If you do:
openssl s_client -connect imap.wp.pl:993 -CAfile /etc/ssl/cert.pem
you will see that TLS is supported.
I can also confirm that removing line with tls ca file
allows me to connect successfully to imap over TLS
using relayd.
But I want verification of certificate...
Does I do something wrong or this is bug in relayd?
