If you have a web server then you must use
g_ssl_lets_path to tell surgemail to create the file
in the webserver path, it should be pointing at
chrisp.
Hi,
So I have a single ubuntu server for mail and
web. Port 80 is for web and port 7080 is for
webmail. g_webmail_port is set to 7080 only.
All requests come to ericvey.com and I let the
router do the work. There is no mail.ericvey.com,
just ericvey.com. Let's encrypt certbot
automagically set up the apache putting the
certificate in /etc/letsencrypyt/live ... )you know
the rest)
Right now, I am back to g_ssl_lets_path because
when I remove it and set g_ssl_auto to "true" I get
this error when I run tellmail ssl_update. I don't
really need to update the certificate, nor do I need
(or want) a second one.
Stars indicate info removed for privacy.
SurgeMail Version 7.3o4-4, Built Oct 14
2018 22:20:57, Platform Linux
Key ******* OK, email=****@ericvey.com,
users=10, flags=48,
host=ubuntu-server-2:127.0.1.1, prod=surgemail
active=4 updates=27/Dec/2016
Update starting
Update domain ericvey.com
Existing cert check: ericvey.com Self
signed certificate /CN=ericvey.com
acme_authorize required for domain
ericvey.com
Challenge http-01 pending
Created
www/.well-known/acme-challenge/VRzjGR2QkMm_WgmaoKmx7Lt1qvhFe6RYCiJXQhi4vHM
HINT: Check your setting url_host
points to your mail server for this domain!!
acme_do_auth failed ericvey.com
Update finished, 0 good, 1 bad
ssl_reload:
It appears to be trying to pull a page from
my public web server on port 80. It didn't create
/home/httpd/html/.well-known/acme-challenge, so I
did and give the user mail permission to write.
Am I doing something wrong here?
Eric Vey
