On 12/3/23 12:50, Jeremy Ardley wrote:
Received: from edge.bronzemail.com (2403-5800-c000-1b7-f3d4-d970-ca28-bf4f.ip6.aussiebb.net [IPv6:2403:5800:c000:1b7:f3d4:d970:ca28:bf4f])(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) client-signature RSA-PSS (2048 bits)) (Client CN "edge.bronzemail.com", Issuer "R3" (not verified)) by mail.bronzemail.com (Postfix) with ESMTPS id 48D60860222 for <jeremy@ardley.org>; Sun, 12 Mar 2023 08:41:44 +0800 (AWST) Jeremy
Back on topic I have solved getting letsencrypt certificates accepted by postfix , but not certificates generated by Debian SMTP CA
Received: from edge.bronzemail.com (2403-5800-c000-1b7-f3d4-d970-ca28-bf4f.ip6.aussiebb.net [IPv6:2403:5800:c000:1b7:f3d4:d970:ca28:bf4f]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "edge.bronzemail.com", Issuer "R3" (verified OK)) by mail.bronzemail.com (Postfix) with ESMTPS id B38C6860225 for <jeremy@ardley.org>; Sun, 12 Mar 2023 12:50:55 +0800 (AWST) Authentication-Results: mail.bronzemail.com; dkim=pass (2048-bit key; unprotected) header.d=ardley.org header.i=@ardley.org header.a=rsa-sha256 header.s=default header.b=OfZ0VNf6; dkim-atps=neutral Received: from bendel.debian.org (bendel.debian.org [82.195.75.100]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "clientcerts/bendel.debian.org", Issuer "Debian SMTP CA" (not verified)) by edge.bronzemail.com (Postfix) with ESMTPS id 691864037F for <jeremy@ardley.org>; Sun, 12 Mar 2023 12:50:53 +0800 (AWST) -- Jeremy