On Fri, Nov 21, 2014 at 07:20:29PM +, Viktor Dukhovni wrote:
> Yes the certificate for Equifax Secure Certificate authority is added in the
> /etc/ssl/certs/ca-certificates.crt file
Prove it. Verify the attached issuer.pem file.
$ openssl verify -CAfile /etc/ssl/certs/ca-certificates \
Deeztek Support:
> On 11/24/2014 8:40 AM, Mike Cardwell wrote:
>
> > You must be new here. Don't expect to be treated in a respectful manner
> > on this list, you will be disappointed.
> >
>
> I'm glad I'm not the only one who feels that way. I'm not that new. I've
> called him out on his rude r
On 11/24/2014 8:40 AM, Mike Cardwell wrote:
You must be new here. Don't expect to be treated in a respectful manner
on this list, you will be disappointed.
I'm glad I'm not the only one who feels that way. I'm not that new. I've
called him out on his rude remarks in the past.
On Mon, 24 Nov 2014 13:40:40 +, Mike Cardwell stated:
> You must be new here. Don't expect to be treated in a respectful manner
> on this list, you will be disappointed.
I do not believe that to be a correct statement. I have always been treated
with respect, even when I ask a really stupid q
Deeztek Support:
> On 11/23/2014 2:02 PM, Viktor Dukhovni wrote:
> > On Sun, Nov 23, 2014 at 07:23:55AM -0500, Deeztek Support wrote:
> >
> >> Any thoughts on this?
> >
> > I have no comment on the irrelevant info I did not ask for. You
> > could start by answering the questions I asked in my prev
* on the Mon, Nov 24, 2014 at 07:13:48AM -0500, Deeztek Support wrote:
>>> Any thoughts on this?
>>
>> I have no comment on the irrelevant info I did not ask for. You
>> could start by answering the questions I asked in my previous
>> message.
>
> is there a requirement to be difficult when someo
On 11/23/2014 2:02 PM, Viktor Dukhovni wrote:
On Sun, Nov 23, 2014 at 07:23:55AM -0500, Deeztek Support wrote:
Any thoughts on this?
I have no comment on the irrelevant info I did not ask for. You
could start by answering the questions I asked in my previous
message.
is there a requirement
On Sun, Nov 23, 2014 at 07:23:55AM -0500, Deeztek Support wrote:
> Any thoughts on this?
I have no comment on the irrelevant info I did not ask for. You
could start by answering the questions I asked in my previous
message.
--
Viktor.
On 11/21/2014 3:37 PM, Deeztek Support wrote:
Prove it:
$ cat > issuer.pem <
I guess I'm confused about something. Below are the relevant entries in
my /etc/ssl/certs/ca-certificates.crt file for google. This was obtained
by running the "openssl s_client -CAfile ca.pem -starttls smtp
-showce
Prove it:
$ cat > issuer.pem <
I guess I'm confused about something. Below are the relevant entries in
my /etc/ssl/certs/ca-certificates.crt file for google. This was obtained
by running the "openssl s_client -CAfile ca.pem -starttls smtp
-showcerts -connect alt4.gmail-smtp-in.l.google.com
Viktor Dukhovni:
# perl collate /var/log/mail.log |
qid=9277043E30 perl -ne '
BEGIN{$/="\n\n";$re=$ENV{qid}}
print if m{$re}oi
'
Wow, what a magic script!
Thanks for publishing!
Andreas
On Fri, Nov 21, 2014 at 12:59:01PM -0500, Deeztek Support wrote:
> I get the following error:
>
> Nov 21 12:52:19 smtp postfix/smtp[17859]: 9277043E30:
> to=,
> relay=alt4.gmail-smtp-in.l.google.com[74.125.136.26]:25, delay=5.7,
> delays=0.05/0.02/5.7/0, dsn=4.7.5, status=deferred (Server certifi
On Fri, Nov 21, 2014 at 01:42:55PM -0500, Deeztek Support wrote:
>
> >Certificate chain
> > 0 s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=mx.google.com
> >i:/C=US/O=Google Inc/CN=Google Internet Authority G2
> > 1 s:/C=US/O=Google Inc/CN=Google Internet Authority G2
> >i:/C=US
Deeztek Support:
>
> > Certificate chain
> > 0 s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=mx.google.com
> > i:/C=US/O=Google Inc/CN=Google Internet Authority G2
> > 1 s:/C=US/O=Google Inc/CN=Google Internet Authority G2
> > i:/C=US/O=GeoTrust Inc./CN=GeoTrust Global CA
> >
Certificate chain
0 s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=mx.google.com
i:/C=US/O=Google Inc/CN=Google Internet Authority G2
1 s:/C=US/O=Google Inc/CN=Google Internet Authority G2
i:/C=US/O=GeoTrust Inc./CN=GeoTrust Global CA
2 s:/C=US/O=GeoTrust Inc./CN=GeoTrust Gl
Deeztek Support:
> Nov 21 12:52:19 smtp postfix/smtp[17859]: 9277043E30:
> to=,
> relay=alt4.gmail-smtp-in.l.google.com[74.125.136.26]:25, delay=5.7,
> delays=0.05/0.02/5.7/0, dsn=4.7.5, status=deferred (Server certificate
> not verified)
Certificate chain
0 s:/C=US/ST=California/L=Mountain V
I'm having a hard time with verifying certificates of remote servers
when trying to encrypt and verify using TLS.
I'm using ubuntu. Here are the relevant entries in main.cf:
smtp_tls_policy_maps = hash:/etc/postfix/tls_policy
smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt
For instance, i
17 matches
Mail list logo
