On 01/20/2012 02:38 PM, Robert Nesius wrote: > I figured out a work around for this issue. I was suspicious that > LWP::UserAgent could not reach the cert for the CA that signed the cert > being presented by the web server. I learned there are some environment > variables that I can leverage to influence where LWP::UserAgent looks > even though it's being invoked down inside a program I don't want to > touch. Adding my /etc/ssl/certs directory to the list of directories > examined for certs solved the problem.
For what it's worth, the next release of RT will include a --ca-file option you can use to specify the specific cert. It's equivalent to setting PERL_LWP_SSL_CA_FILE. > *root@linux:/opt/rt4/bin# *export PERL_LWP_SSL_CA_PATH=/etc/ssl/certs If you'd like to submit a simple patch to rt-mailgate that also adds support for --ca-path, I'm sure we'd apply it. I do wonder why the OpenSSL library underlying the Perl library isn't finding your cert in /etc/ssl/certs like I'd expect it to. Thomas -------- RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 & 6, 2012
