I don't understand. Dovecot refuses to issue the correct SSL cert. I've checked and triple checked the file name in /etc/dovecot/conf.d/10-ssl.conf. I've restarted the service multiple times and even rebooted.

Apache issues the correct cert. They are using the exact same files.

perplexing.

CLI command to check dovecot:
openssl s_client -connect mail.heerssen.net:465

And Apache
openssl s_client -connect mail.heerssen.net:443

Grr. The SSL certs for my primary email domain expired, so I renewed them.

WHY ISN'T IT WORKING?

Because you didn't restart dovecot, you idiot.

because running a mail server wasn’t fun enough: the Dovecot 2.3 → 2.4 update has tons of breaking config changes

(h/t to https://willem.com/blog/2025-06-04_breaking-changes/ for the exhaustive breakdown of the changes)

That whole #dovecot breaking update (and from what I've seen the unreasonable pro version, at least for small setups) makes me question self-hosting my mail server…
I'm fine with investing time to setup something the first time - but updates (especially not minor) should never be breaking… - neither should they require quiet some time investment imho…
#SelfHosting #mailserver

So I guess I either try courier-imap server or cyrus-imapd. Not sure of the differences between the two or whether one is better than the other.

Since Dovecot 2.4 is dropping replication, I'll definitely need to rework my mail servers and those for BSDMail. I think I'll be going back to Cyrus, which I last used over 20 years ago. The problem is my memories have long faded, so it'll be like studying it again from scratch. And that makes me happy, because it'll be like learning something totally new!

Special thanks to @h3artbl33d for the heads up!

https://www.europesays.com/uk/195287/ Dad charged with manslaughter after son dies aged four #Britain #Courts #Crime #Dovecot #England #GreatBritain #Liverpool #UK #UnitedKingdom

#Dovecot Does anyone know how I can use the #zlib plugin to compress my mail archive while transferring from another server? I tried to set it up, but the mail just comes over as-is. The docs suggest that it should convert with #dsync to compressed files. I seem to miss something. #help

https://doc.dovecot.org/2.3/configuration_manual/zlib_plugin/

J’ai découvert que j’avais 2,8 millions de mails dans un seul dossier IMAP.
Je répète : deux millions. Huit cent mille.
Merci YunoHost pour les rapports de diagnostic par mail…

J’ai tout purgé en SSH depuis ma voiture, en 5G, pendant que la sono tournait.
Maintenant, iOS Mail et Apple Intelligence peuvent bosser sans convulser.

Je n’administre pas un serveur. Je dompte un fauve .

If you're planning on upgrading #Dovecot from 2.3 to 2.4, better take some days off. Did it yesterday evening and it broke in SO MANY WAYS! I don't know what they were thinking, the upgrade guide is... not very good and there is no config converter. The new config syntax is confusing (but that might only be me) and the daemons run with different permissions it seems? I had trouble with daemons not being able to access config files.

Sysadmins del fediverso, que score usan para Spamassassin? #spam #spamassassin #sysadmin #correo #email #postfix #dovecot

Down side of running #fail2ban: when you or one of the people you provide email service for gets a new device. Invariably, it means doing a "what's my IP" for the new device, then logging into the mail server and doing:

fail2ban-client set dovecot unbanip  
fail2ban-client set postfix unbanip  
fail2ban-client set postfix-sasl unbanip  

#eMail #selfHosting gurus: I am looking for the simplest possible way to host myself a mailbox I can add to my email clients (Thunderbird, phone, etc.) as usual, so I can move mails there to free up space on the 3rd party "real" emails, then back them up separately on my server.

I do not want receiving or sending emails to work. Just an IMAP or whatever box I can shove emails in the face by dragging them in Thunderbird or with a script.

Ideally available in #NixOS

#dovecot?

I seem to have a #DNS problem (unheard of, right?).
I've got #nginx working with #HTTPS, using #certbot, and there's an A record that points at the IP address of the server. So I can go to https://mydomain.com and it's all dandy (thank you @eff).
Now I want a TLS certificate for the #Dovecot mail server. I've set up a virtual server for mail.mydomain.com like this:
```
server {
listen 80;
listen [::]:80;
server_name mail.mydomain.com;

root /usr/share/nginx/html/;

location ~ /.well-known/acme-challenge {
allow all;
}
}
```
But when I run certbot I get this:
```
NoRecords
Fatal
No valid A or AAAA records could be ultimately resolved for mail.mydomain.com. This means that Let's Encrypt would not be able to connect to your domain to perform HTTP validation, since it would not know where to connect to.
No A or AAAA records found.
```
On my domain registrar's dashboard it says that I don't need to set up a MX record if I have only one mail server and it is on the same IP address as my Domain Record. But I'm thinking the certbot error doesn't sound like it's looking for an MX record.
Should I temporarily make a subdomain record for mail.mydomain.com?
#ImSoConfused #AskFedi #FediTechSupport

#fedihelp , please: I'm #selfhosting #dovecot and #postfix and running out of disk space with my mails reaching back into last century. I'd like to remove the oldest ones and keep an archive of any kind on a different host. What would be the easiest way to achieve that?
Maybe just imap-sync to some special maildir?

Edit:typo