For a locked down SMTP server using TLS, instead of the smtp_header_checks, I had to do:
smtp_generic_maps = hash:/etc/postfix/login_map
firstname.lastname@example.org would be the same as that used in sasl_passwd
I'm trying to figure out which one of snapshot and suspend I should use for containers to minimise downtime.
Is there a log somewhere that tells me this?
The docs say 'minimal downtime' for suspend, but I would like to compare with snapshot...
I've raised a bug report here bugzilla 3868 about this. Just to recap, Letsencrypt allow up to 100 domains per certificate, but the Proxmox UI only allows 5.
Is this likely to change or should I try to hack the code/find an alternative solution?
It looks as though the debian bullseye (11) repo only has the main crowdsec package and not any additional packages like the firewall bouncer.
The main crowdsec install script also doesn't detect proxmox 7 as a debian bullseye distro.
I have managed to install a bouncer using the below, but is...
Yes but the CN is visible when people investigate the certificate in the browser, SAN is not. Seems odd to give people the functionality to have multiple domains but not let them choose the visible primary one.
The functionality is so handy I'm using the cert for my main web proxy, so that's...
Another related question, are you planning to include a feature where you choose which domain in the ACME list becomes the primary certificate domain that is displayed in the browser (is this the Subject?)? I have updated my certificate a couple of times and it appears to take...
I have been able to add a new DNS API script to acme.sh for Mythic Beasts, load it and use it with Proxmox according to this thread.
1. Put your script in here:
2. You no longer need to edit the perl file according to that thread, instead you change it here...
How do you manually update the "proxmox acme package"?
On 7.1-4 there is no plugin list and there is no ACME under Datacenter, so I am a bit puzzled!
Though there's loads of plugins in /usr/share/proxmox-acme/dnsapi