openSUSE Forums > Archives > Novell Archives » SUSE 10.1 : Bug postfix with TLS ?

Go Back   openSUSE Forums > Archives > Novell Archives
Reload this Page SUSE 10.1 : Bug postfix with TLS ?
Forums FAQ Members List Search Today's Posts Mark Forums Read


Novell Archives Archived content from Novell openSUSE support forums

 
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 22-May-2006, 08:30
s-michel@netcourrier.com
Guest
  
Posts: n/a
Default SUSE 10.1 : Bug postfix with TLS ?
I must test postfix with SHA256 DM and the only suse with openssl 0.9.8
is SUSE 10.1 But :

With SUSE 10.1 postfix-2.2.9-10.x86_64.rpm, all certificate dont work
(whit SHA256 or SHA1)

/var/log/mail
May 22 14:53:49 mail postfix/postfix-script: starting the Postfix mail
system
May 22 14:53:49 mail postfix/master[14587]: daemon started -- version
2.2.9, configuration /etc/postfix
May 22 14:54:21 mail postfix/smtpd[14607]: initializing the server-side
TLS engine
May 22 14:54:21 mail postfix/smtpd[14607]: cannot load Certificate
Authority data
May 22 14:54:21 mail postfix/smtpd[14607]: warning: TLS library problem:
14607:error:02001001:system library:fopenperation not
permitted:bss_file.c:122:fopen('/etc/ssl/certs/ca.pem','r'):
May 22 14:54:21 mail postfix/smtpd[14607]: warning: TLS library problem:
14607:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:127:
May 22 14:54:21 mail postfix/smtpd[14607]: warning: TLS library problem:
14607:error:0B084002:x509 certificate
routines509_load_cert_crl_file:system lib:by_file.c:274:
May 22 14:54:21 mail postfix/smtpd[14607]: connect from unknown
[172.20.0.216]
May 22 14:55:23 mail postfix/smtpd[14607]: lost connection after STARTTLS
from unknown[172.20.0.216]


But when i build Postfix it's ok. (i must delete rpm before !)
make makefiles CCARGS="-DUSE_TLS -DHAS_LDAP" AUXLIBS="-lssl -lcrypto -
L/usr/local/lib -lldap -L/usr/local/lib -llber"
make install

/var/log/mail
May 22 15:16:15 mail postfix/master[26910]: daemon started -- version
2.2.10, configuration /etc/postfix
May 22 15:16:31 mail postfix/smtpd[26913]: warning:
smtpd_sasl_auth_enable is true, but SASL support is not compiled in
May 22 15:16:31 mail postfix/smtpd[26913]: initializing the server-side
TLS engine
May 22 15:16:31 mail postfix/smtpd[26913]: connect from unknown
[172.20.0.206]
May 22 15:16:31 mail postfix/smtpd[26913]: setting up TLS connection from
unknown[172.20.0.206]
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:before/accept
initialization
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:error in SSLv2/v3
read client hello A
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
client hello B
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
client hello B
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 read client
hello B
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write server
hello A
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write
certificate A
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write key
exchange A
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write server
done A
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:SSLv3 flush data
May 22 15:16:31 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
client certificate A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
client certificate A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:SSLv3 read client
key exchange A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
certificate verify A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
certificate verify A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
certificate verify A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:error in SSLv3 read
certificate verify A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:SSLv3 read finished
A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write change
cipher spec A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:SSLv3 write
finished A
May 22 15:16:34 mail postfix/smtpd[26913]: SSL_accept:SSLv3 flush data
May 22 15:16:34 mail postfix/smtpd[26913]: TLS connection established
from unknown[172.20.0.206]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256
bits)
.....

PS :
the main.cf and certifate are same
TSL is enforced

Bug ?
  #2 (permalink)  
Old 27-May-2006, 03:34
Automatic reply
Guest
  
Posts: n/a
Default Re: SUSE 10.1 : Bug postfix with TLS ?
S-michel,

It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.

Has your problem been resolved? If not, you might try one of the following options:

- Do a search of our knowledgebase at http://support.novell.com/search/kb_index.jsp
- Check all of the other support tools and options available at
http://support.novell.com.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://support.novell.com/forums)

Be sure to read the forum FAQ about what to expect in the way of responses:
http://support.novell.com/forums/faq_general.html

If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.

Good luck!

Your Novell Product Support Forums Team
http://support.novell.com/forums/
 

Bookmarks


« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



Contact Us - openSUSE Forums - Archive - Privacy Statement - Top
© 2007 Novell, Inc. All Rights Reserved. This site uses the YAML CSS framework. All times are GMT -6. The time now is 06:54.
About openSUSE | Disclaimers | Feedback

Founded by Novell
 

Search Engine Friendly URLs by vBSEO 3.3.0 RC2