Can't verify remote server certs without trusted CAs (ssl_client_ca_* settings)

Ralf Hildebrandt Ralf.Hildebrandt at charite.de
Mon Mar 20 15:05:42 EET 2017


* Ralf Hildebrandt <Ralf.Hildebrandt at charite.de>:
> * Ralf Hildebrandt <Ralf.Hildebrandt at charite.de>:
> > Hi!
> > 
> > I upgraded the 2.2 packages today (from 2:2.2.28-1~auto+5 to 2:2.2.28-1~auto+8) I now I'm getting an error:
> 
> I was able to determine the last working version: 2:2.2.28-1~auto+6
> and the first "broken" version:                   2:2.2.28-1~auto+7

2:2.2.28-1~auto+7 CHANGES file (http://xi.dovecot.fi/debian/pool/jessie-auto/dovecot-2.2/dovecot_2.2.28-1~auto+7_amd64.changes)
says:

New revision (a39b5b2852f2) in dovecot Git repository

...
     - lib-ssl-iostream: Ensure verify_remote_cert is true
     - lib-ssl-iostream: Fix ambiguity with SSL settings
...	  

I think one of these two could be the culprit
-- 
Ralf Hildebrandt
  Geschäftsbereich IT | Abteilung Netzwerk
  Charité - Universitätsmedizin Berlin
  Campus Benjamin Franklin
  Hindenburgdamm 30 | D-12203 Berlin
  Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962
  ralf.hildebrandt at charite.de | http://www.charite.de
	    


More information about the dovecot mailing list