Hi guys,
I'm treating this like a bug:
https://www.directadmin.com/features.php?id=2391
Fixed in 1.57.2 (or now with pre-release binaries compiled June 21st). The set_permissions.sh will always set 640 diradmin:mail now, so this will sort it with the June 21st script:
./set_permissions.sh da_files
The oversight was that mail_sni is always enabled by default for new installs now, and secure_access_group has been enabled by default for a long time,
but case where mail_sni being on, and secure_access_group not being on was not considered.
Should be ok now, after permissions get reset.
I'm a bit confused how it was working before if exim wasn't able to read them though..
Either way, glad this has been tracked down with a solution.
Let us know if anyone still runs into this after resetting the cert/key permissions.
John