Qmail-tls notes
Posted on | September 26, 2008 | No Comments
I am using Bill Shuff's toaster patch ( thanks bill , you rule ! ) , for some reason make cert did not work. I create the certs manually :
#openssl req -newkey rsa:1024 -x509 -nodes -days 3650 -out servercert.pem -keyout servercert.pem
qmail did show TLS up but i got an error :
#openssl s_client -debug -crlf -starttls smtp -connect localhost:25
50883:error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/s23_clnt.c:562:
scratching my head around the net I found this and run :
#openssl ciphers > /var/qmail/control/tlsclientciphers #openssl ciphers > /var/qmail/control/tlsserverciphers
which fixed it all:
#openssl s_client -crlf -starttls smtp -connect localhost:25
CONNECTED(00000003)
Comments
Leave a Reply
Recently Written
- Missing “sync with google” on mac os 10.5.8 address book
- Clean up your mac caches
- ldap_add: Invalid syntax (21) – fix
- Parse a csv file using perl
- Centos : permission denied when mounting nfs share from client
- Fix “the installation source for this product is not available. Verify that the source exists and you can access it”
- MAC – Reset office 2008 serial
- MAC – Change default umask in Snow Leopard
- CentOS 5.4 – install oracle client
- CentOS 5 – add dag repo
Categories
- Apache
- Blackberry
- CentOS
- Cisco
- FreeBSD
- Linux
- Mac
- Misc
- Monitoring
- Nagios
- News
- Open Source
- Qmail
- Security
- Sys Admin
- Two Events
- Ubuntu
- Unix
- VMware
- Windows
Archives
- February 2010
- January 2010
- December 2009
- October 2009
- August 2009
- July 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- February 2007
- January 2007
- September 2006
- May 2006
