doapydave's questions

I recently created my own CA and issued my first root cert, then intermediate, then finally a server cert/key/chain for apache.

When i switch from the letsencrypt certs added with certbot to the self generated certs, apache fails to start with:

Dec 20 07:52:07 test setroubleshoot[4859]: SELinux is preventing /usr/sbin/httpd from getattr access on the file /root/ca/intermediate/certs/www.inthingslimited.com

I'm wondering if maybe its some of the letsencrypt defaults causing me headaches or is it simply that the certs dont trace back to a registered CA?

I've read that i could disable SELinux but I think it would be better to find a solution that allowed me to leave SELinux alone.

Thanks for any pointers.

When trying to configure an IMAP client to connect on 993 to a Postfix/Dovecot server I just deployed, i get an occasional timeout sometimes with a message about mail_max_use_rip_connection = 10. I'm guessing i should increase the value by a few and see if the error keeps up but I cant find where this parameter is set. Anyone have any ideas bout this? Thanks!