Is there any method to totally disable SNI configuration for Dovecot on Virtualmin?
The reason for that is Virtualmin modify from time to time dovecot.conf and replace local_name for default domain (used for mail client configuration), from:
I don’t think it’s possible. If Dovecot is version 2 and above, then it’s SNI capable, and in case SSL is enabled in Dovecot (set to yes or require), then it automatically updates domain’s certs.
The workaround for you could be is to set proper path, of where certs should searched.
Ok, I understand.
I have the same settings in Virtualmin Configuration.
But maybe should be better for users that Virtualmin consider ~ (home path) to domain and subdomain (subserver) to be relative, for example:
/home/mydomain/ssl.cert - for mydomain.tld
/home/mydomain/domains/mail.mydomain.tld/ssl.cert - for mail.mydomain.tld
I don’t really want that mydomain.tld and mail.mydomain.tld share the same ssl certificate.
Anyway, it’s strange that Virtualmin modifies sometimes automatically dovecot.conf (even if it’s already configured SNI for that domain). And modifies only ssl.cert and ssl.key paths, and not ssl.ca :-/
Could be. I’ve disabled that option.
Now I’ll wait to see if Virtualmin rewrites correctly local_names’s definition in dovecot.conf (I don’t know how to force that).
