[Pkg-openssl-devel] Bug#648285: More information
martin f krafft
madduck at debian.org
Thu Nov 10 15:01:47 UTC 2011
Meanwhile, I discovered two more things:
Postfix can establish a "Verified" SMTP-TLS session with the server,
as long as it does not present a client certificate. This suggests
that the server certificate can be verified just fine on the client
side.
When the client presents a certificate (which is not expired,
I checked), however, the server says:
postfix/smtpd[4981]: warning: TLS library problem:
4981:error:0D0C50A1:asn1 encoding
routines:ASN1_item_verify:unknown message digest
algorithm:a_verify.c:141:
I have not changed the Postfix configuration on either the client's
or the server's side since it worked last.
--
.''`. martin f. krafft <madduck at d.o> Related projects:
: :' : proud Debian developer http://debiansystem.info
`. `'` http://people.debian.org/~madduck http://vcs-pkg.org
`- Debian - when you have better things to do than fixing systems
-------------- next part --------------
A non-text attachment was scrubbed...
Name: digital_signature_gpg.asc
Type: application/pgp-signature
Size: 1124 bytes
Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20111110/522b0c94/attachment.pgp>
More information about the Pkg-openssl-devel
mailing list