Thanks a lot for all your help...
The problem was SuSE doesn't provide the standard root certificates in
their rpms. They divide openssl in three packages: openssl (containing
compiled openssl and libraries, c_rehash and a minimum of docs),
openssl-doc (containing manpages for all openssl commands and library
calls, and the demos) and openssl-devel (containing headerfiles and the
static libraries). But neither contains the certificates. Only the
source rpm from which all three packages are builded. After installing
this source (yeah! ;-) ) and copying to the apropriate directories it's
working.
For documentation issues:
To use the c-client (imap-2000c) library with openssl (0.9.6a) on a SuSE
7.2 Linux you have to install
- imap-devel.rpm: includes /usr/lib/libc-client.*
- openssl.rpm: includes /usr/bin/openssl,/usr/lib/libssl.so...
- openssl-doc.rpm: you should install to know how to use
/usr/bin/openssl with all commands
- openssl.spm: only the sources contain the root certificates
I'm not sure if you need /usr/src/openssl-0.9.6/certs or /usr/ssl/certs
holding the certificates (the precompiled c-client lib includes the
later string), having both worked fine. You find the certificates
(*.pem) included within the tar
/usr/src/packages/SOURCE/openssl-0.9.6a.tar.bz2 in the directory
openssl-0.9.6a/certs. After copying to the directories you have to
create a hash over all files using "c_rehash dir" for both directories.
Now you can test ssl-capability of c-client with /usr/sbin/mtest
contacting {your.imap.server/ssl/user=username}. A step before you can
check whether your openssl installation works itself with "openssl
s_client -connect your.imap.server:993 -CApath certsdir", "certsdir"
being one of two with the certificates.
Hope this will be usefull for anybody else who has a similar problem.
Juergen
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
