Peter,
Take a peek inside the CA and cert files using openssl x509 -inform pem -in
[file] -noout -text and use openssl rsa with the same arguments to peek in
the private key, and make sure they contain what you expect they should
contain.
Let us know if you see anything peculiar inside or not.
G
On Fri, Apr 05, 2013 at 05:29:41PM +0200, Reindl Harald wrote:
>
>
> > smtpd_tls_certfile=/etc/postfix/ssl/server.crt
> The correct parameter is smtpd_tls_cert_file
>
I must have looked at that and not comprehended what I was seeing
for about 100 times.
That's why I was looking for "another s
Am 05.04.2013 17:23, schrieb Peter L. Berghold:
> On Fri, Apr 05, 2013 at 05:19:36PM +0200, Reindl Harald wrote:
>>
>>
>> well, and this remains from your ACTIVE config
>> do you notice the "smtpd_use_tls = no"?
>
> Yes. I turned it off for now while I seek out advise as to why it is not
> wor
On Fri, Apr 05, 2013 at 11:23:33AM -0400, Peter L. Berghold wrote:
> On Fri, Apr 05, 2013 at 05:19:36PM +0200, Reindl Harald wrote:
> >
> >
> > well, and this remains from your ACTIVE config
> > do you notice the "smtpd_use_tls = no"?
>
> Yes. I turned it off for now while I seek out advise as
On Fri, Apr 05, 2013 at 05:19:36PM +0200, Reindl Harald wrote:
>
>
> well, and this remains from your ACTIVE config
> do you notice the "smtpd_use_tls = no"?
Yes. I turned it off for now while I seek out advise as to why it is not
working for now. It will be turned back on when I have some id
Am 05.04.2013 17:13, schrieb Peter L. Berghold:
> On Fri, Apr 05, 2013 at 04:58:14PM +0200, Reindl Harald wrote:
>>
>> we don't know because you refused to provide output of
>> "postconf -n"
>
> as you wish:
well, and this remains from your ACTIVE config
do you notice the "smtpd_use_tls = no"?
On Fri, Apr 05, 2013 at 11:06:16AM -0400, Peter L. Berghold wrote:
> On Fri, Apr 05, 2013 at 10:57:42AM -0400, Vitaly Tskhovrebov wrote:
> >Include intermediary certs in your chain.
>
> I think I have... what I did was get their ca.cert via a wget and then I
> manually downloaded their Class
On Fri, Apr 05, 2013 at 04:58:14PM +0200, Reindl Harald wrote:
>
>
> we don't know because you refused to provide output of
> "postconf -n"
as you wish:
# postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
On Fri, Apr 05, 2013 at 10:57:42AM -0400, Vitaly Tskhovrebov wrote:
>Include intermediary certs in your chain.
>
I think I have... what I did was get their ca.cert via a wget and then I
manually downloaded their Class 1 Intermediate Server CA and their
Class 2 Intermediate Server CA and adde
On Fri, Apr 05, 2013 at 10:46:57AM -0400, Peter L. Berghold wrote:
> This is aping everything I've read on the topic on a variety of sites.
Instead of aping, try:
http://www.postfix.org/TLS_README.html#server_tls
http://www.postfix.org/TLS_README.html#client_tls
> Here are the a
Am 05.04.2013 16:46, schrieb Peter L. Berghold:
> Gettting very frustrated with trying to set up TLS using a StartSSL (StartCom)
> cert.
>
> Here are the applicable lines (sanitized of course) I used to set this
> up:
> smtpd_use_tls = yes
> smtp_use_tls = yes
> smtp_tls_note_starttls_offer =
Include intermediary certs in your chain.
On Fri, Apr 5, 2013 at 10:46 AM, Peter L. Berghold wrote:
> Hi Folks,
>
> Gettting very frustrated with trying to set up TLS using a StartSSL
> (StartCom)
> cert.
>
> Here are the applicable lines (sanitized of course) I used to set this
> up:
> smtpd_us
On Fri, Apr 05, 2013 at 04:54:37PM +0200, Robert Schetterer wrote:
>
> debian chroot ?
Nope. Not running chroot.
--
Peter L. Berghold pe...@berghold.net
Unix Professional, Beer Brewer, Dog
Am 05.04.2013 16:46, schrieb Peter L. Berghold:
> Hi Folks,
>
> Gettting very frustrated with trying to set up TLS using a StartSSL (StartCom)
> cert.
>
> Here are the applicable lines (sanitized of course) I used to set this
> up:
> smtpd_use_tls = yes
> smtp_use_tls = yes
> smtp_tls_note_star
14 matches
Mail list logo
