X-Git-Url: https://iankelling.org/git/?p=distro-setup;a=blobdiff_plain;f=mail-setup;h=0c543863e777a5bc12f73604579a0672bd80f6c8;hp=9e867c85b38085bc90ac03470b52452ee360e632;hb=32fb94de4f6b8e30ee53486f87721e73ed4eff50;hpb=e2fb88c7f8c32cf6442a399844bd2fbd1c912027 diff --git a/mail-setup b/mail-setup index 9e867c8..0c54386 100755 --- a/mail-setup +++ b/mail-setup @@ -307,7 +307,9 @@ else # begin exim. has debian specific stuff for now # we check that a valid cert is there already. # to put the hostname in the known hosts if ! ssh -o StrictHostKeyChecking=no root@li.iankelling.org :; then - openssl x509 -checkend $(( 60 * 60 * 24 * 3 )) -noout -in /etc/openvpn/mail.crt + # This just causes failure if our cert is going to expire in the next 30 days. + # Certs I generate last 10 years. + openssl x509 -checkend $(( 60 * 60 * 24 * 30 )) -noout -in /etc/openvpn/mail.crt else # note, man openvpn implies we could just call mail-route on vpn startup/shutdown with # systemd, buuut it can remake the tun device unexpectedly, i got this in the log @@ -370,8 +372,7 @@ exim4-config exim4/use_split_config boolean true EOF source /a/bin/bash_unpublished/source-semi-priv - exim_main_dir=/etc/exim4/conf.d/main - mkdir -p $exim_main_dir + mkdir -p /etc/exim4/conf.d/main @@ -552,8 +553,8 @@ EOF # MAIN_HARDCODE_PRIMARY_HOSTNAME might mess up the # smarthost config type, not sure. all other settings # would be unused in that config type. - cat >$exim_main_dir/000_localmacros </etc/exim4/conf.d/main/000_localmacros <