From: Wesley Craig (no email)
Date: Sat Apr 12 2008 - 14:17:06 EDT
From the article:
> I’ve *finally* discovered why my IMAP server no longer likes my
> self-signed certificates. The certificates are just fine. Cyrus is
> just fine. It’s OpenSSL that’s the problem - Bug 1513 to be exact.
> Cyrus calls SSL_CTX_use_certificate_chain_file() to read in the
> certificate file, but in my case, since I don’t have CA data set,
> an earlier function returns an error, so the
> SSL_CTX_use_certificate_chain_file() function also returns an
> error, even though the certificate and key are just fine.
What does that buy you? Why not set the cert as the CA, since that
is the meaning of "self-signed certificate"?
:wes
On 12 Apr 2008, at 12:33, brian wrote:
> That's what I was wondering, also, after coming across this last
> night:
> http://weblog.elwing.org/elwing/index.php/archive/2007/07/18/cyrus-
> imap-and-certificates/
---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
|
|
|