Re: [exim] TLS key file

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMRory Campbell-Lange at <-
 
Delete this message
Reply to this message
Author: Andreas Metzler
Date:  
To: exim-users
Subject: Re: [exim] TLS key file
Ian Zimmerman via Exim-users <exim-users@???> wrote:
> When is the file specified by tls_privatekey read, in a daemon exim?
> Once at startup, or every time a TLS connection is made?

The latter. (Which needs to be that way since
tls_privatekey/tls_certificate are expanded and might point to
different files depending on the connecting host or received SNI)

> IOW, does exim need to be SIGHUPed when the file changes?

No.

> And does the
> file need to be readable by the exim user or group id?

Yes, either exim user or exim group neds read access, I am using 0640
root:eximuser.

cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] TLS key file[exim] dovecot_login authenticator failed for (User) [45.125.66.123]: 535 Incorrect authentication data->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)