more notes on how to get maddy to work
Signed-off-by: Jeff Carr <jcarr@wit.com>
This commit is contained in:
parent
3b6caca1a7
commit
b9945775e7
|
@ -0,0 +1,17 @@
|
||||||
|
.PHONY: certs
|
||||||
|
|
||||||
|
all:
|
||||||
|
echo none of this works yet
|
||||||
|
|
||||||
|
# ?
|
||||||
|
tls:
|
||||||
|
setfacl -R -m u:maddy:rX /etc/ssl/mx1.example.org.crt /etc/ssl/mx1.example.org.key
|
||||||
|
setfacl -R -m u:maddy:rX /etc/letsencrypt/{live,archive}
|
||||||
|
|
||||||
|
# git clone https://github.com/acmesh-official/acme.sh.git
|
||||||
|
certs:
|
||||||
|
mkdir -p certs/mx1.example.org
|
||||||
|
./acme.sh/acme.sh --force --install-cert -d mx1.example.org \
|
||||||
|
--key-file certs/mx1.example.org/privkey.pem \
|
||||||
|
--fullchain-file certs/mx1.example.org/fullchain.pem
|
||||||
|
|
|
@ -1 +1,4 @@
|
||||||
#!/bin/sh
|
#!/bin/sh -x
|
||||||
|
|
||||||
|
systemctl daemon-reload
|
||||||
|
useradd -mrU -s /sbin/nologin -d /var/lib/maddy -c "maddy mail server" maddy
|
||||||
|
|
Loading…
Reference in New Issue