On 13/03/18 21:12, Dominik George wrote: > Hi, > >> Today, though - which may be unrelated - it prompted me to check the >> certificate, which weirdly seemed to belong to my VPS provider; it >> wasn't the one configured in dovecot. >> >> Has anyone else seen either of these issues? My VPS provider hasn't >> come >> up with any ideas yet. > > They have a very clear idea - they are snooping on your TLS, and that doesn't happen by accident. > > It might be a sad accident with a firewall, but they should fix that in no time. If not, you are best off finding a new provider. What make that less plausible is that Thunderbird on Debian sees none of these problems. I forgot to mention that in my original post, sorry. Both devices were on my home lan, so behind the same NAT. The name on the cert was something like "precise.example.com", which looks to me like it was created as part of an (oldish) VPS image. My VPS was built with Debian (jessie), though. There are Ubuntu LXC containers on there alongside the Debian ones, but none as old as precise. Hmm. I use iptables to forward 143 to the mail container. I wonder if somehow my vps can see the same internal (RFC1918) ip address somewhere else? That should all be blocked by my firewall, though. Richard
Attachment:
signature.asc
Description: OpenPGP digital signature