From 9998416590e2c7ed304020f480d72fea60de2522 Mon Sep 17 00:00:00 2001
From: Christoph <auchri@users.noreply.github.com>
Date: Mon, 25 Jul 2016 22:50:36 +0200
Subject: [PATCH] Add paths to CA to postifx

Fixes untrusted TLS connections

See: http://giantdorks.org/alain/fix-for-postfix-untrusted-certificate-tls-error/
---
 target/postfix/main.cf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/target/postfix/main.cf b/target/postfix/main.cf
index 4ab8c0d9..1b77a283 100644
--- a/target/postfix/main.cf
+++ b/target/postfix/main.cf
@@ -33,6 +33,8 @@ smtp_tls_protocols=!SSLv2,!SSLv3
 smtpd_tls_mandatory_ciphers = high
 smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
 smtpd_tls_exclude_ciphers = aNULL, LOW, EXP, MEDIUM, ADH, AECDH, MD5, DSS, ECDSA, CAMELLIA128, 3DES, CAMELLIA256, RSA+AES, eNULL
+smtpd_tls_CApath = /etc/ssl/certs
+smtp_tls_CApath = /etc/ssl/certs
 
 # Settings to prevent SPAM early
 smtpd_helo_required = yes