Skip to main content

cPanel incorrect exim configuration

Comments

4 comments

  • imageinabox
    Hey Tekcor, I create a exim.conf.local file and put the following code in this file:
    @CONFIG@ tls_certificate = /etc/exim/cert/$received_ip_address.crt tls_privatekey = /etc/exim/cert/$received_ip_address.key
    This overwrites the certificate information. I then put each dedicated IP address into the /etc/exim/certs/.crt & .key files. Restart exim
    /scripts/buildeximconf && /scripts/restartsrv_exim
    This is a manual fix but allows exim to work on SSL/TLS for my dedicated IP customers. Thanks, Justin
    0
  • Tekcor
    That's not a bad idea. Unfortunately it requires manual certificate management, so I'll have to remember to swap in those certificates upon renewal. But it's a smaller amount of work than what I was thinking.
    0
  • imageinabox
    That's not a bad idea. Unfortunately it requires manual certificate management, so I'll have to remember to swap in those certificates upon renewal. But it's a smaller amount of work than what I was thinking.

    Yeah, it takes a little bit of time but a lot quick update than cPanel response time. :D If I'm able to hook into the /scripts/build_mail_sni script, then I would be able to make this an auto updater. So whenever you update the SSL within WHM/cPanel, it would update the .crt and .key.
    0
  • cPanelMichael
    Hello :) Just to clarify, does disabling the "Mail SNI" feature for the domain name make a difference? SNI for mail services is managed at: "WHM Home " SSL/TLS " Manage SSL Hosts" Thank you.
    0

Please sign in to leave a comment.