From eccd4a30fa36c57202e2068fc63289aee1005156 Mon Sep 17 00:00:00 2001
From: Gregor Kleen <gkleen@yggdrasil.li>
Date: Tue, 24 Jun 2025 12:03:55 +0200
Subject: ...

---
 hosts/surtr/email/default.nix | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/hosts/surtr/email/default.nix b/hosts/surtr/email/default.nix
index 58cb76d9..ff0c5e2a 100644
--- a/hosts/surtr/email/default.nix
+++ b/hosts/surtr/email/default.nix
@@ -129,14 +129,16 @@ in {
       setSendmail = true;
       postmasterAlias = ""; rootAlias = ""; extraAliases = "";
       destination = [];
-      sslCert = "/run/credentials/postfix.service/surtr.yggdrasil.li.pem";
-      sslKey = "/run/credentials/postfix.service/surtr.yggdrasil.li.key.pem";
       networks = [];
       config = let
         relay_ccert = "texthash:${pkgs.writeText "relay_ccert" ""}";
       in {
         smtpd_tls_security_level = "may";
 
+        smtpd_tls_chain_files = [
+          "/run/credentials/postfix.service/surtr.yggdrasil.li.key.pem" "/run/credentials/postfix.service/surtr.yggdrasil.li.pem"
+        ];
+
         #the dh params
         smtpd_tls_dh1024_param_file = toString config.security.dhparams.params."postfix-1024".path;
         smtpd_tls_dh512_param_file = toString config.security.dhparams.params."postfix-512".path;
-- 
cgit v1.2.3