On 2023-12-28 18:44, joe a wrote:
On 12/28/2023 08:59:51, Carlos E. R. wrote:
On 2023-12-28 06:16, David C. Rankin wrote:
On 12/27/23 13:12, Carlos E. R. wrote:
Very, very long-running problem, e.g. https://bugzilla.mozilla.org/show_bug.cgi?id=1671736
Claims it is resolved -- it isn't and never has been. There is something botched in tbirds acceptance of a changed self-signed cert. I was hit with this just about every year as the cert expired until I finally just went to using Let's Encrypt real certificates (you can use the same cert for web and mail servers)
I'd load certbot and just get the free cert for your domain, set up your web and mail servers to use them and be done with it.
I refuse to use external certificates.
Do you care to express a reason for this?
It is ridiculous to use them in a LAN.
Also, I use a faked domain, I don't have a true domain.
So, this setup does not communicate with the "outside world" at all? Only internal?
Exactly.
If so, why bother with certificates at all? Who is going to "sniff" your comms?
Nobody. But some other software demanded it and refused to work, I don't remember which. I might at some point use it over internet, but my IP would still be dynamic, and the connection would perhaps be a tunnel over ssh. -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)