Back to Changelog
v1.0.280
Outbound TLS certificate fix for Debian/Ubuntu: bundled PHP and Postfix now auto-detect the OS CA bundle on startup
Improvements
3- cacert_service.go self-heal: detects RHEL path (/etc/pki/tls/certs/ca-bundle.crt) vs Debian/Ubuntu path (/etc/ssl/certs/ca-certificates.crt) and writes openssl.cafile and curl.cainfo to each PHP version conf.d/00-cacert.ini automatically on server start.
- Postfix CAfile also updated by the same self-heal pass, ensuring consistent CA trust across PHP and mail transport.
- No manual php.ini edit required — fix applies automatically on update.
Bug Fix
1- Fixed outbound TLS certificate verification on Debian/Ubuntu — bundled PHP/Postfix now use the OS-detected system CA bundle, resolving certificate verify failed when sending mail through external SMTP (WP Mail SMTP STARTTLS), curl(), and payment gateways.