4: 2019-08-16 (金) 14:13:28 iseki  |
5: 2022-12-09 (金) 19:06:17 iseki |
||
|---|---|---|---|
| Line 9: | Line 9: | ||
| - mail_location = maildir:~/Maildir | - mail_location = maildir:~/Maildir | ||
| **** conf.d/10-ssl.conf [#s5cfdff3] | **** conf.d/10-ssl.conf [#s5cfdff3] | ||
| + | # openssl dhparam -out /etc/dovecot/dh.pem 4096 | ||
| + | |||
| - ssl = required | - ssl = required | ||
| - ssl_cert = </etc/pki/dovecot/certs/dovecot.pem | - ssl_cert = </etc/pki/dovecot/certs/dovecot.pem | ||
| - ssl_key = </etc/pki/dovecot/private/dovecot.pem | - ssl_key = </etc/pki/dovecot/private/dovecot.pem | ||
| + | - ssl_dh = </etc/dovecot/dh.pem | ||
| **** firewalld [#x277ab06] | **** firewalld [#x277ab06] | ||
| - firewall-cmd --add-service=imaps --permanent | - firewall-cmd --add-service=imaps --permanent | ||
| - firewall-cmd --reload | - firewall-cmd --reload | ||
| + | #br | ||
| + | |||
| + | *** Error [#of2cf7e3] | ||
| + | **** imap-login: Error: Failed to initialize SSL server context: Can't load DH parameters (ssl_dh setting): error:1408518A:SSL routines:ssl3_ctx_ctrl:dh key too small [#y866074c] | ||
| + | - see https://www.wetch.co.jp/dovecot%E3%82%92%E3%82%A2%E3%83%83%E3%83%97%E3%82%B0%E3%83%AC%E3%83%BC%E3%83%89%E3%81%97%E3%81%9F%E3%82%89%E5%8F%97%E4%BF%A1%E3%81%A7%E3%81%8D%E3%81%AA%E3%81%8F%E3%81%AA%E3%81%A3%E3%81%9F/ | ||
| + | - dovecot2.3から ssl-parameter.datファイルが廃止, ssl_dh を使用する. | ||
| + | -- openssl dhparam -out /etc/dovecot/dh.pem 4096 | ||
| + | -- /etc/dovecot/conf.d/10-ssl.conf に ssl_dh = </etc/dovecot/dh.pem を追加 | ||
| #br | #br | ||
- Dovecot のバックアップ一覧
- Dovecot のバックアップ差分(No. All)
