Gmail pop3 error "Leaf certificate is expired"

r0dy · June 17, 2021, 6:36pm

My domain is: acupuncture-nantes.fr
ubuntu 20.04.2 LTS

certbot renew tells me there is no certificate to renew :

Saving debug log to /var/log/letsencrypt/letsencrypt.log

Processing /etc/letsencrypt/renewal/acupuncture-nantes.fr.conf

Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/mail.acupuncture-nantes.fr.conf

Cert not yet due for renewal

Processing /etc/letsencrypt/renewal/poterie-aisne.fr.conf

Cert not yet due for renewal

The following certs are not due for renewal yet:
/etc/letsencrypt/live/acupuncture-nantes.fr/fullchain.pem expires on 2021-08-13 (skipped)
/etc/letsencrypt/live/mail.acupuncture-nantes.fr/fullchain.pem expires on 2021-09-07 (skipped)
/etc/letsencrypt/live/poterie-aisne.fr/fullchain.pem expires on 2021-09-06 (skipped)
No renewals were attempted.

the problem is :
gmail usually fetches my emails on r0dy.net and acupuncture-nantes.fr (same ip, same vps) without problems, but since june 14 i get :
17 juin 2021 à 13:56 Erreur liée à la sécurité SSL. [ Aide ]
Le serveur a renvoyé l'erreur "SSL error: Leaf certificate is expired".

i tried to look into https://check-your-website.server-daten.de/?q=acupuncture-nantes.fr but it didn't get me any clue.

i also tried to restart dovecot but it didn't change anything.

Anyone has an idea ?

Osiris · June 17, 2021, 6:42pm

I'm not seeing any expired certificate on SMTP port 25 and port 587, IMAP and POP3.

What are the exact GMail settings?

r0dy · June 17, 2021, 6:50pm

pop server : mail.acupuncture-nantes.fr
port : 995
always use SSL

Osiris · June 17, 2021, 6:59pm

Looks fine to me, I see the cert valid from June 9th.

r0dy · June 18, 2021, 8:25am

Yes, I renewed mail.acupuncture-nantes.fr on june 9th as you can see here :
Renewal on a roundcube config - #5 by r0dy

I did not change anything else, and gmail stopped accessing my pop server after june 13th.

r0dy · June 18, 2021, 8:29am

As I was trying to find anomalies, I noticed that my disk was almost full.
I added some disk space, apt update / upgrade / --fix-broken install / cleaned everything, restarted, and now it works.
So i don't know how or why but the issue was related to full disk occupation, if that can help anyone in the future.

system · July 18, 2021, 8:29am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Gmail & Roundcube say "Leaf certificate is expired" but LE says it's fine Help	3	2431	February 22, 2020
Gmail pop3 error “Leaf certificate is expired” Help	3	970	July 7, 2023
Renewal on a roundcube config Help	8	1931	July 9, 2021
All SSL cert are saying root R3 cert has expired Help	10	2494	October 31, 2021
"SSL error: Leaf certificate is expired" Help	6	9143	September 16, 2019

Gmail pop3 error "Leaf certificate is expired"

Related topics