DevHeads.net

Renewal of Let's encrypt certs being used in postfix

Hi there. We just started using let's encrypt certs in our mail servers.
Since renewal of the certs is done automatically, will postfix cope well
with that or will we have to restart it after the renewal takes place?

Thanks so much in advance for your help!

Ignacio

Comments

Re: Renewal of Let's encrypt certs being used in postfix

By Olivier Nicole at 10/11/2018 - 04:14

Hello,

I do restart postfix. In fact, I do reboot the mail server as other
pieces of software are affected (imap).

A general reboot every 3 months is not that bad.

Bestregards,

Olivier

Re: Renewal of Let's encrypt certs being used in postfix

By Matus UHLAR - f... at 10/11/2018 - 04:22

On 11.10.18 15:14, Olivier wrote:
I only do reload for apache, proftpd, courier etc and only restart services
that can't handle reload. I don't restart unless really needed.

only if a kernel is to be replaced. I don't see readon to reboot servers
periodically.

Re: Renewal of Let's encrypt certs being used in postfix

By Dominic Raferd at 10/11/2018 - 04:14

Viktor answered this one here a little while ago:
But I don't know whether the same is true for dovecot (whether for sasl or
imap) - I restart dovecot after cert renewal just in case.