mail/roundcube selfsigned TLS problem after upgrade to php56 (SOLVED)
Marko Cupać
marko.cupac at mimar.rs
Mon Mar 2 13:18:09 UTC 2015
On Mon, 2 Mar 2015 10:15:11 +0100
Marko Cupać <marko.cupac at mimar.rs> wrote:
> On Mon, 2 Mar 2015 09:56:05 +0100
> Marko Cupać <marko.cupac at mimar.rs> wrote:
>
> > Hi,
> >
> > my roundcube was connecting happily to dovecot2 server over TLS
> > for a few years, until recent upgrade of php ports (5.4 -> 5.6) and
> > roundcube (1.0.5 -> 1.1.0).
> >
> > Luckily, all I needed to add to roundcube config was:
> >
> > $config['imap_conn_options'] = array(
> > 'ssl' => array(
> > 'verify_peer' => true,
> > 'verify_depth' => 3,
> > 'cafile' => '/etc/ssl/public/dovecot.pem',
> > ),
> > );
> >
> > I found this information on archlinux forums:
> > https://bbs.archlinux.org/viewtopic.php?id=193012
> >
> > Hope this saves some time to someone, I had my webmail
> > non-functional longer than I'd like to because of this change.
> >
> > Regards,
>
> Similar goes for managesieve plugin:
> $config['managesieve_conn_options'] = array(
> 'ssl' => array(
> 'verify_peer' => true,
> 'verify_depth' => 3,
> 'cafile' => '/etc/ssl/public/dovecot.pem',
> ),
> );
>
> Probably also for all other plugins that have something to do with
> TLS.
I wrote blog post about this:
https://www.mimar.rs/en/sysadmin/2015/php-5-6-x-ssltls-peer-certificates-and-hostnames-verified-by-default/
The ones who think "he did it for clicks and ads" have dirty mind.
The blog is (and will remain) ad-free ;)
--
Marko Cupać
https://www.mimar.rs
More information about the freebsd-ports
mailing list