Re: [exim] TLS key file

Kezdőlap
Üzenet törlése
Válasz az üzenetre
Szerző: Andreas Metzler
Dátum:  
Címzett: exim-users
Tárgy: Re: [exim] TLS key file
Ian Zimmerman via Exim-users <exim-users@???> wrote:
> When is the file specified by tls_privatekey read, in a daemon exim?
> Once at startup, or every time a TLS connection is made?


The latter. (Which needs to be that way since
tls_privatekey/tls_certificate are expanded and might point to
different files depending on the connecting host or received SNI)

> IOW, does exim need to be SIGHUPed when the file changes?


No.

> And does the
> file need to be readable by the exim user or group id?


Yes, either exim user or exim group neds read access, I am using 0640
root:eximuser.

cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'