On Wed, Nov 03, 2010 at 12:21:20PM -0400, Linux Addict wrote:
> Victor, I see these message after upgrade and in fact its RHEL4
> w/ openssl-0.9.7a-43.17.el4_6.1
I don't know what fixes RedHat backports to OpenSSL 0.9.7, but this is
rather an anciennt and otherwise unsupported version of OpenSSL. I would
not even recommend 0.9.8 at this point. You really should be using 1.0.0a.
That said.
> Nov 3 12:02:11 MXHOST postfix/smtp[6209]: certificate verification failed
> for MXHOST-1[10.46.200.23]:25: untrusted issuer /C=US/O=The Go Daddy Group,
> Inc./OU=Go Daddy Class 2 Certification Authority
harmless.
> Nov 3 12:02:11 MXHOST postfix/smtp[6209]: warning: tls_text_name:
> MXHOST-1[10.46.200.23]:25: error decoding peer subject CN of ASN.1 type=12
Harmless. OMG, somebody on the Internet has a malformed certificate. :-)
> Nov 3 12:02:11 MXHOST postfix/smtp[6209]: warning: TLS library problem:
> 6209:error:0D07A0A0:asn1 encoding routines:ASN1_mbstring_copy:unknown
> format:a_mbstr.c:142:
Ditto.
> I know its not postfix issue, cause I was getting cert error even before
> upgrade, but "TLS Library Problem" is an additional error after the upgrade.
Nothing to worry about. I expect the message was delivered despite
the warnings.
--
Viktor.
