flashmob
commented
5 years ago A certificate is required if you want to use the StartTLS feature. Majority of email is delivered like this nowadays, so it's essential to set one up.
You can use the certbot tool to create the letsencrypt certificate. https://certbot.eff.org/ so issue #29 is not really needed.
Once you got the certificate (private and public keys), put the paths to those files in to the config:
https://github.com/flashmob/go-guerrilla/wiki/Configuration
On Sun., 4 Aug. 2019, 05:32 Lord Alfred, notifications@github.com wrote:
If there is no tls array in the servers configuration file, how will this affect the received mails? Part of the mail we can not receive, or in any case, it will be received all, just by an unprotected protocol (through port 25, and not through 465)? Or I can create self-signer certificate with openssl command (like this) and everything will work?
I have my own catchall server with postfix, but I have not previously used tls/ssl for postfix and do not quite understand why it is needed.
PS: postfix sucks and loads the CPU to 100% with a queue of over 50 thousand letters...
PPS: Issue #29 https://github.com/flashmob/go-guerrilla/issues/29 - How are things now with this task? Maybe you can already do something in the semi-manual mode?
— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/flashmob/go-guerrilla/issues/162?email_source=notifications&email_token=AAE6MPYOWENE7QMUKDVZ2DTQCXTPJA5CNFSM4IJD2MY2YY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4HDGTW3A, or mute the thread https://github.com/notifications/unsubscribe-auth/AAE6MPZNRLHSIQJ4Y25WT2TQCXTPJANCNFSM4IJD2MYQ .
If there is no
tlsarray in the servers configuration file, how will this affect the received mails? Part of the mail we can not receive, or in any case, it will be received all, just by an unprotected protocol (through port 25, and not through 465)? Or I can create self-signed certificate with openssl command and everything will work?I have my own catchall server with postfix, but I have not previously used tls/ssl for postfix and do not quite understand why it is needed.
PS: postfix sucks and loads the CPU to 100% with a queue of over 50 thousand letters...
PPS: Issue https://github.com/flashmob/go-guerrilla/issues/29 - How are things now with this task? Maybe you can already do something in the semi-manual mode?