https://bugzilla.novell.com/show_bug.cgi?id=862662 https://bugzilla.novell.com/show_bug.cgi?id=862662#c3 Lutz Epperlein <l.epperlein@gmx.net> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|l.epperlein@gmx.net | --- Comment #3 from Lutz Epperlein <l.epperlein@gmx.net> 2014-02-07 20:21:35 UTC --- (In reply to comment #2)
on my 13.1, openssl s_client -connect mail.gmx.net:587 -starttls smtp reports Verify return code: 0 (ok) so the generic certificates are good.
The above command doesn't return at the end, I have to abort it. But the output seems to be ok.
on my server I have: smtp_tls_CApath = /etc/ssl/certs/
in /etc/postfix/main.cf ...
can you check at yours where it points to?
smtp_tls_CApath = /etc/postfix/ssl/cacerts This path didn't exist, I have to issue 'ln -s /etc/ssl/certs /etc/postfix/ssl/cacerts' Again, I have to empty POSTFIX_TLS_CAFILE in /etc/sysconfig/postfix, the default was "cacert.pem" as mentioned in the comments in the file. If this value isn't empty, POSTFIX_SSL_PATH/cacerts will be ignored according to the same comments. YAST didn't adjust that. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.