If you have a web server then you must use g_ssl_lets_path to tell surgemail to create the file in the webserver path, it should be pointing at
chrisp.
Hi,
So I have a single ubuntu server for mail and web. Port 80 is for web and port 7080 is for webmail. g_webmail_port is set to 7080 only.
All requests come to ericvey.com and I let the router do the work. There is no mail.ericvey.com, just ericvey.com. Let's encrypt certbot automagically set up the apache putting the certificate in /etc/letsencrypyt/live ... )you know the rest)
Right now, I am back to g_ssl_lets_path because when I remove it and set g_ssl_auto to "true" I get this error when I run tellmail ssl_update. I don't really need to update the certificate, nor do I need (or want) a second one.
Stars indicate info removed for privacy.
SurgeMail Version 7.3o4-4, Built Oct 14 2018 22:20:57, Platform Linux
Key ******* OK, email=****@ericvey.com, users=10, flags=48, host=ubuntu-server-2:127.0.1.1, prod=surgemail active=4 updates=27/Dec/2016
Update starting
Update domain ericvey.com
Existing cert check: ericvey.com Self signed certificate /CN=ericvey.com
acme_authorize required for domain ericvey.com
Challenge http-01 pending
Created www/.well-known/acme-challenge/VRzjGR2QkMm_WgmaoKmx7Lt1qvhFe6RYCiJXQhi4vHM
HINT: Check your setting url_host points to your mail server for this domain!!
acme_do_auth failed ericvey.com
Update finished, 0 good, 1 bad
ssl_reload:
It appears to be trying to pull a page from my public web server on port 80. It didn't create /home/httpd/html/.well-known/acme-challenge, so I did and give the user mail permission to write.
Am I doing something wrong here?
Eric Vey
