Package: courier-mta-ssl Version: 0.47-3 Severity: important
Both stable/testing versions of courier-mta-ssl do not create a /etc/courier/esmtpd.pem file. Creating this file and matching the permissions of imapd.pem or pop3d.pem from courier-imap-ssl or courier-pop-ssl respectively still results in the log file error of permission denied while opening esmtpd.pem. This renders all smtp over ssl unusable and no messages are sent nor is a ssl connection ever established. -rw------- 1 root root 2137 Jan 19 21:27 esmtpd.pem -rw------- 1 root root 2137 Jan 19 16:37 imapd.pem -rw------- 1 root root 2133 Jan 19 16:37 pop3d.pem Further investigation shows that the server runs as daemon and not as root. No where does it state that this file should be daemon:daemon, however the config file does say it should not be world readable. The a quick fix is in fact: -rw------- 1 daemon daemon 2137 Jan 19 21:27 esmtpd.pem -rw------- 1 root root 2137 Jan 19 16:37 imapd.pem -rw------- 1 root root 2133 Jan 19 16:37 pop3d.pem This bug seems to be a the same (or very similar to) #238814 from March of 2004. I upgraded courier-mta-ssl to testing for that reason, however it did not correct the issue. It also error out on install without a esmtpd.pem file in place. I would think that courier-mta-ssl should either autocreate a pem file with the correct permissions given above or there should be some notification on how to set the permissions. -- System Information: Debian Release: 3.0 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.4.20-021stab026.6.777-smp Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages courier-mta-ssl depends on: ii courier-mta 0.37.3-2.5 Mail Transport Agent of the Courie ii courier-ssl 0.47-3 Courier Mail Server - SSL/TLS Supp -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
