Mystery of email authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



I'm trying to setup sendmail/dovecot on a new server running CentOS-6
(well, CentOS-6.2 now).
Everything seems to go well, but when I run fetchmail I get this warning:
------------------------------------
[tim@grover ~]$ fetchmail imap.maths.tcd.ie
fetchmail: Warning: the connection is insecure, continuing anyways. (Better 
use --sslcertck!)
------------------------------------

I should say that everything runs fine on a CentOS-5.7 server,
and as far as I can see the setup on the new server is the same.
Under CentOS-5.7 I don't get the same warning:
------------------------------------
[tim@helen ~]$ fetchmail imap.maths.tcd.ie
fetchmail: No mail for tim at imap.maths.tcd.ie
------------------------------------

If I do add --sslcertck (as suggested) I get the response:
------------------------------------
[tim@grover ~]$ fetchmail --sslcertck imap.maths.tcd.ie
fetchmail: Server certificate verification error: self signed certificate
fetchmail: This means that the root signing certificate (issued for 
/C=IE/ST=Dublin/L=Dublin/O=School of Mathematics, Trinity College, 
Dublin./OU=Automatically-generated IMAP SSL 
key/CN=imap.maths.tcd.ie/emailAddress=postmaster@xxxxxxxxxxxx) is not in the 
trusted CA certificate locations, or that c_rehash needs to be run on the 
certificate directory. For details, please see the documentation of --
sslcertpath and --sslcertfile in the manual page.
139925738739528:error:14090086:SSL 
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify 
failed:s3_clnt.c:1063:
fetchmail: SSL connection failed.
fetchmail: socket error while fetching from tim@xxxxxxxxxxxxxxxxx
fetchmail: Query status=2 (SOCKET)
------------------------------------
That is on the new server.
On the old server (where the fetchmail command works)
I get much the same warning, though briefer.
------------------------------------
[tim@helen ~]$ fetchmail --sslcertck imap.maths.tcd.ie
fetchmail: Server certificate verification error: self signed certificate
11316:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate 
verify failed:s3_clnt.c:915:
fetchmail: SSL connection failed.
fetchmail: socket error while fetching from tim@xxxxxxxxxxxxxxxxx
fetchmail: Query status=2 (SOCKET)
------------------------------------

I must admit I've never been very clear on SSL authentication


-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College Dublin


_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos


[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux