From 5772bc100d476ffc1ee6c8b3fe18efda182d67a9 Mon Sep 17 00:00:00 2001 From: Ingolf Wagner Date: Wed, 30 Oct 2019 18:23:45 +0100 Subject: [PATCH] mail: fixed c-base certificate problem --- configs/workhorse/mail-fetcher.nix | 56 ++++++++++++++++++++++++++++++ 1 file changed, 56 insertions(+) diff --git a/configs/workhorse/mail-fetcher.nix b/configs/workhorse/mail-fetcher.nix index c366bcf..82e1057 100644 --- a/configs/workhorse/mail-fetcher.nix +++ b/configs/workhorse/mail-fetcher.nix @@ -37,6 +37,11 @@ source = toString ; requiredBy = ["fetchmail.service"]; }; + "c-base.palo" = { + user = config.users.users.mailUser.name; + source = toString ; + requiredBy = ["fetchmail.service"]; + }; }; environment.systemPackages = [ pkgs.muchsync ]; @@ -96,6 +101,56 @@ }; notmuch.enable = true; }; + c-base = { + primary = false; + address = "palo@c-base.org"; + aliases = [ ]; + realName = "Ingolf Wagner"; + userName = "palo"; + passwordCommand = "cat ${toString config.krops.userKeys."c-base.palo".target}"; + imap = { + host = "c-mail.c-base.org"; + port = 993; + # fetched using : nix-shell -p openssl --run "openssl s_client -connect c-mail.c-base.org:993 -showcerts" + tls.certificatesFile = + pkgs.writeText "c-base.pem" '' + -----BEGIN CERTIFICATE----- + MIIFKDCCAxCgAwIBAgIDArgjMA0GCSqGSIb3DQEBDQUAMFQxFDASBgNVBAoTC0NB + Y2VydCBJbmMuMR4wHAYDVQQLExVodHRwOi8vd3d3LkNBY2VydC5vcmcxHDAaBgNV + BAMTE0NBY2VydCBDbGFzcyAzIFJvb3QwHhcNMTcxMTE1MDkxMjI3WhcNMTkxMTE1 + MDkxMjI3WjBhMQswCQYDVQQGEwJERTEPMA0GA1UECBMGQmVybGluMQ8wDQYDVQQH + EwZCZXJsaW4xFDASBgNVBAoTC2MtYmFzZSBlLlYuMRowGAYDVQQDExFjLW1haWwu + Yy1iYXNlLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKR3XBxJ + 72MayCS0D5GCoHcY0TQLs1DQSohCCobRdSowFJzNQw/2lL6bb+Q2rmevZQXuM4vP + YbFytvTDmY5y5MNXEqGLfi8D5TcaP/RdXWQU++yUunE6yMdqZNheeXPjM//PnoXG + DyT236BovEi3YipUUsLXFiRj+cAjrQE7a2YUs3fjV3P6grMH0V06J6P6+JJvRgp2 + K33uhKhnKyb3s1tbdbu1KeGozx2ws9lg79XV+Py6PXxP6jTZ2PCsaxs3BThSdmsl + vQyk/zoW7tA1m2ntRCoyFHZqfOHsN3UOS/HDRlXqgSf0ah8cPYPsl0ayXhgOv0Tu + 1PSMt4Ve2GajX8MCAwEAAaOB9TCB8jAMBgNVHRMBAf8EAjAAMA4GA1UdDwEB/wQE + AwIDqDA0BgNVHSUELTArBggrBgEFBQcDAgYIKwYBBQUHAwEGCWCGSAGG+EIEAQYK + KwYBBAGCNwoDAzAzBggrBgEFBQcBAQQnMCUwIwYIKwYBBQUHMAGGF2h0dHA6Ly9v + Y3NwLmNhY2VydC5vcmcvMDgGA1UdHwQxMC8wLaAroCmGJ2h0dHA6Ly9jcmwuY2Fj + ZXJ0Lm9yZy9jbGFzczMtcmV2b2tlLmNybDAtBgNVHREEJjAkghFjLW1haWwuYy1i + YXNlLm9yZ4IPbWFpbC5jLWJhc2Uub3JnMA0GCSqGSIb3DQEBDQUAA4ICAQCCG73N + ztSW6YQBwaYvANv6IormcsGCLqbH6fGhRkuLrUyxNPGD8rm1svhoLGF97kIxn/gz + Fnw6i9FLnP5UkMNyUfOVLvKBzBhEG7KWQge4laOWVdHF4iFTg0KCCAK30OwR2Yff + RaEQWpecCt9QeTbzgAT0J9Oi3/t1uCGNSu8e4YfNHGRtOf0G0hBokt2ZSQQdy5GK + iycZy8kjGOX/QXH8OfpsHlnqG9c/3z8CKg/woFy1jXQV9JB/PSbaO9Q/2VYkk/xK + 5fN17XyM1YVKtEkJJ0U+az8mmDg63SZUO9viiQdO6VT+Ujkypf1QnEMaCiG1R2Hf + BvhiU/KEeHtNaYTZkhevYHHErL6rBNbCx2P8CaiHaC9XR3XeqPbAowBJ8Hg/nxHQ + U7zdePSLe2664wWJQGW0dSmmUSKJWEjnMcYsk2tWYcA4c6LfozjdODhRv2SdHuUd + yboZgnLJWprUhI78RQ7Tp1SmCQhZkHVc/C9UMxhoX0QguqYFD4II8qTUGG6Khl0a + TDFlwPWrRmeZrBhVt1O9Hb/Yyt0vMAej4J6jVkErGCeliipMhlA3gFrsOl0uVMf7 + u9IDWpuZmAjdYebK/kh2iyj7xEgfNY1yvwryBNJiV5g7jPSkaVleJ/Due8Yl7eVk + RamaGp3UnFTUy7gxvWmBYGKIxt3d/TBZnptvMA== + -----END CERTIFICATE-----''; + }; + mbsync = { + enable = true; + create = "both"; + }; + notmuch.enable = true; + }; gmail = { # for google accounts you have to allow 'less secure apps' in accounts.google.com primary = true; @@ -252,6 +307,7 @@ {query = "from:jobs2web.com" ; tags = ["+newzealand" "+jobs" "-inbox" ];} {query = "from:mailings.gmx.net" ; tags = ["+junk" "-inbox" "-unread"];} {query = "from:paypal.de AND subject:Bestätigung"; tags = ["-unread" "+paypal" "+billing"] ;} + {query = "to:c-base.org" = ["+cbase"] ;} {query = "to:renoise@ingolf-wagner.de OR to:root@renoise.com OR from:renoise.com OR to:admin@renoise.com"; tags = ["+renoise"] ;} {query = "from:amazon.de OR from:amazon.com AND NOT to:renoise.com"; tags = ["+shop" "+amazon" "+billing"];}