Date: Mon, 2 Mar 2015 14:17:57 +0100 From: Marko =?UTF-8?B?Q3VwYcSH?= <marko.cupac@mimar.rs> To: freebsd-ports@freebsd.org Subject: Re: mail/roundcube selfsigned TLS problem after upgrade to php56 (SOLVED) Message-ID: <20150302141757.6c930577@efreet> In-Reply-To: <20150302101511.63ff8eca@efreet> References: <20150302095605.52fcd10c@efreet> <20150302101511.63ff8eca@efreet>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 2 Mar 2015 10:15:11 +0100 Marko Cupa=C4=87 <marko.cupac@mimar.rs> wrote: > On Mon, 2 Mar 2015 09:56:05 +0100 > Marko Cupa=C4=87 <marko.cupac@mimar.rs> wrote: >=20 > > Hi, > >=20 > > my roundcube was connecting happily to dovecot2 server over TLS > > for a few years, until recent upgrade of php ports (5.4 -> 5.6) and > > roundcube (1.0.5 -> 1.1.0). > >=20 > > Luckily, all I needed to add to roundcube config was: > >=20 > > $config['imap_conn_options'] =3D array( > > 'ssl' =3D> array( > > 'verify_peer' =3D> true, > > 'verify_depth' =3D> 3, > > 'cafile' =3D> '/etc/ssl/public/dovecot.pem', > > ), > > ); > >=20 > > I found this information on archlinux forums: > > https://bbs.archlinux.org/viewtopic.php?id=3D193012 > >=20 > > Hope this saves some time to someone, I had my webmail > > non-functional longer than I'd like to because of this change. > >=20 > > Regards, >=20 > Similar goes for managesieve plugin: > $config['managesieve_conn_options'] =3D array( > 'ssl' =3D> array( > 'verify_peer' =3D> true, > 'verify_depth' =3D> 3, > 'cafile' =3D> '/etc/ssl/public/dovecot.pem', > ), > ); >=20 > Probably also for all other plugins that have something to do with > TLS. I wrote blog post about this: https://www.mimar.rs/en/sysadmin/2015/php-5-6-x-ssltls-peer-certificates-an= d-hostnames-verified-by-default/ The ones who think "he did it for clicks and ads" have dirty mind. The blog is (and will remain) ad-free ;) --=20 Marko Cupa=C4=87 https://www.mimar.rs
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150302141757.6c930577>