allow for SAN mail certs

2024-01-25 08:09:35 -08:00 · 2024-01-25 08:09:35 -08:00 · ee02317ed5
commit ee02317ed5
parent b1ea2ee09e
2 changed files with 2 additions and 2 deletions
--- a/bin/vmail-dovecot-enable.sh
+++ b/bin/vmail-dovecot-enable.sh
@ -44,7 +44,7 @@ fi

 # create dovecot config & restart
 if [ ! -f "/etc/dovecot/sites.d/$confile" ]; then
-  echo "local_name $maildomain {" > /etc/dovecot/sites.d/$confile
+  echo "local_name \"mail.$domain imap.$domain pop.$domain smtp.$domain\" {" > /etc/dovecot/sites.d/$confile
  echo "  ssl_cert = </etc/ssl/letsencrypt/$pemfile" >> /etc/dovecot/sites.d/$confile
  echo "  ssl_key = </etc/ssl/letsencrypt/$pemfile" >> /etc/dovecot/sites.d/$confile
  echo "}" >> /etc/dovecot/sites.d/$confile
--- a/etc/exim4/exim4.conf
+++ b/etc/exim4/exim4.conf
@ -16,7 +16,7 @@ smtp_accept_queue_per_connection = 50
 .include /etc/exim4/exim_local.conf

 tls_advertise_hosts = *
-tls_certificate = ${if exists{/etc/ssl/letsencrypt/${tls_sni}.pem}{/etc/ssl/letsencrypt/${tls_sni}.pem}}
+tls_certificate = ${if exists{/etc/ssl/letsencrypt/${sg{${tls_sni}}{^smtp\.}{mail.}}.pem}{/etc/ssl/letsencrypt/${sg{${tls_sni}}{^smtp\.}{mail.}}.pem}}

 tls_on_connect_ports = 465
 daemon_smtp_ports = 25 : 465 : 587