[toaster] SSL certificate for POP3/SMTP

Wed, 18 Jun 2008 20:05:47 -0700 

Hi Bill, hello list...

Recently I got myself a SSL certificate from GoDaddy. I created a key like
following
> openssl genrsa -des3 -out mail.domain.key 1024  

then the CSR

>openssl req -new -key mail.domain.key -out mail.domain.csr

After requesting - GoDaddy sent me my mail.domain.crt and gd_bundled_key...
according to
http://www.digicert.com/ssl-certificate-installation-qmail.htm I need my RSA
private key and 3 further certificates ( my + intermediate + root ). I have
taken my RSA, my certificate and the intermediate bundle ( 1 RSA + 4
certificate parts ) to servercert.pem... when I try to connect to my POP3S I
get 

# openssl s_client -debug -connect  IP:995
CONNECTED(00000003)
write to 0x80bdf48 [0x80be630] (142 bytes => 142 (0x8E))
0000 - 80 8c 01 03 01 00 63 00-00 00 20 00 00 39 00 00   ......c... ..9..
0010 - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0   8..5............
0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 66 00   ..3..2../.....f.
0030 - 00 05 00 00 04 01 00 80-08 00 80 00 00 63 00 00   .............c..
0040 - 62 00 00 61 00 00 15 00-00 12 00 00 09 06 00 40   b..a...........@
0050 - 00 00 65 00 00 64 00 00-60 00 00 14 00 00 11 00   ..e..d..`.......
0060 - 00 08 00 00 06 04 00 80-00 00 03 02 00 80 92 bc   ................
0070 - 2f 1e 53 c0 c8 11 cf ef-f2 0d 87 2d b4 9c 03 07   /.S........-....
0080 - 72 60 14 d9 ba 10 23 38-82 bf 36 77 85 89         r`....#8..6w..
read from 0x80bdf48 [0x80c3b90] (7 bytes => -1 (0xFFFFFFFF))
write:errno=104

SMTP leaves me with ( no further response .. )

# openssl s_client -debug -crlf -starttls smtp -connect IP:25
CONNECTED(00000003)
read from 0x80bdf48 [0x80b9e20] (8192 bytes => 33 (0x21))
0000 - 32 32 30 20 6d 61 69 6c-2e 65 6c 73 65 2d 68 6f   220 mail.domain
0010 - 73 74 69 6e 67 2e 6e 65-74 20 45 53 4d 54 50 0d   sine.net ESMTP.
0020 - 0a                                                .
write to 0x80bdf48 [-0x4078a9a8] (10 bytes => 10 (0xA))
0000 - 53 54 41 52 54 54 4c 53-0d 0a                     STARTTLS..

I have also noticed, that my RSA private key has 
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,C01102312151103C
after the BEGIN line...

Any hints or word of advice are welcome.. since I am stuck here :(

Regards,
E:S

Reply via email to