[Dovecot] ssl with openwrt OS

Andrey Panin pazke at donpac.ru
Wed Mar 28 20:39:12 EEST 2007 

On 087, 03 28, 2007 at 11:37:16AM +0200, burolib wrote:
> Hi.
> 
> I'm still facing troubles on my way. This time concerning ssl encryption.
> 
> only dovecot-auth starts...
> 
> imap and pop3 go down with this log
> 
> dovecot: Mar 23 18:34:19 Info: Dovecot v1.0.rc27 starting up
> dovecot: Mar 23 18:34:20 Error: Temporary failure in creating login processes, slowing down for now
> dovecot: Mar 23 18:34:20 Error: imap-login: Can't load certificate file /etc/ssl/certs/server.pem: error:2507006C:lib(37):func(112):reason(108)
> dovecot: Mar 23 18:34:20 Error: child 849 (login) returned error 89
> dovecot: Mar 23 18:34:20 Error: imap-login: Can't load certificate file /etc/ssl/certs/server.pem: error:2507006C:lib(37):func(112):reason(108)
> dovecot: Mar 23 18:34:20 Error: imap-login: Can't load certificate file /etc/ssl/certs/server.pem: error:2507006C:lib(37):func(112):reason(108)
> dovecot: Mar 23 18:34:20 Error: child 847 (login) returned error 89
> dovecot: Mar 23 18:34:20 Error: child 848 (login) returned error 89
> 
> I attemped with makecert.sh, myown certificate which works with qmail-pop3d/stunnel, and cacert.org.

Looks like OpenSSL configuration problem in OpenWRT:
https://dev.openwrt.org/ticket/1182
https://dev.openwrt.org/changeset/6706


> All the times i get the same error. my dovecot.conf says:
> 
> ##                                                                       
> ## SSL settings                                                          
> ##                                                                       
>                                                                          
> #ssl_listen =                                                          
>                                                                          
> #ssl_disable = no                                                      
>                                                                          
> ssl_cert_file = /etc/ssl/certs/server.pem                              
> ssl_key_file = /etc/ssl/private/private.key                            
>                                                                          
> #ssl_key_password =                                                    
>                                                                          
> #ssl_ca_file =                                                         
>                                                                          
> #ssl_verify_client_cert = no                                           
>                                                                          
> ssl_parameters_regenerate = 128                                        
>                                                                          
> ssl_cipher_list = ALL:!LOW                                             
>                                                                          
> verbose_ssl = yes
> 
> I spent a week trying to solve this out.
> Any ideas?
> 
> 
> 
> ------------------------------------------------------
> Leggi GRATIS le tue mail con il telefonino i-mode? di Wind
> http://click.libero.it/imode
> 
> 
> 
> 
> ------------------------------------------------------
> Passa a Infostrada. ADSL e Telefono senza limiti e senza canone Telecom
> http://click.libero.it/infostrada
> 
> 
> 

-- 
Andrey Panin		| Linux and UNIX system administrator
pazke at donpac.ru		| PGP key: wwwkeys.pgp.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://dovecot.org/pipermail/dovecot/attachments/20070328/78b1f85e/attachment.pgp

More information about the dovecot mailing list