Bug#522690: exim4-daemon-heavy: previously working client ssl certificate setup fails to work in lenny

Stephen Gran sgran at debian.org
Fri Apr 10 12:54:00 UTC 2009


This one time, at band camp, Andreas Metzler said:
> > This does not happen if the server cert presented is not signed by the
> > same CA as the client cert.

eh.  I don't know what has changed (some artifact of a puppet driven
setup, possibly?) but on returning to it, the clients are now sending
their certs to machines with a cert signed by the same ca, and using
opportunistic tls without cert exchange otherwise.  I'm aesthetically
displeased by them not sending their client certs to everyone, but this
is no longer a showstopper.  Feel free to downgrade or close the report
as you deem fit.

Cheers,
-- 
 -----------------------------------------------------------------
|   ,''`.                                            Stephen Gran |
|  : :' :                                        sgran at debian.org |
|  `. `'                        Debian user, admin, and developer |
|    `-                                     http://www.debian.org |
 -----------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-exim4-maintainers/attachments/20090410/57a2c151/attachment.pgp>


More information about the Pkg-exim4-maintainers mailing list