[Bug 628487] New: Courier config files come with TLS_CERTFILE=/usr/share/courier-imap/pop3d.pem
http://bugzilla.novell.com/show_bug.cgi?id=628487 http://bugzilla.novell.com/show_bug.cgi?id=628487#c0 Summary: Courier config files come with TLS_CERTFILE=/usr/share/courier-imap/pop3d.pem Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: Other OS/Version: openSUSE 11.3 Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: chris@computersalat.de ReportedBy: suse-beta@cboltz.de QAContact: qa@suse.de Found By: Beta-Customer Blocker: --- /etc/courier/pop3d-ssl and /etc/courier/imapd-ssl come with this default: TLS_CERTFILE=/usr/share/courier-imap/pop3d.pem This feels like having a deja-vu, see bug 241937 and bug 341267 :-/ Please fix it again;-) It looks like /usr/share/courier-imap/mkimapdcert (which is called from the courier-*-ssl initscripts when $TLS_CERTFILE doesn't exist) will generate the certificate in /usr/share/courier-imap/. The certificate should be somewhere in /etc/ - /etc/ssl/private would probably be the best place. Please fix the location in the config files and the mkimapdcert script. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=628487 http://bugzilla.novell.com/show_bug.cgi?id=628487#c1 Christian Wittmer <chris@computersalat.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |suse-beta@cboltz.de --- Comment #1 from Christian Wittmer <chris@computersalat.de> 2010-08-05 15:43:09 UTC --- There is a new feature in upcoming version: --with-certsdir configure option places a non-default path for SSL certificate files in all the supporting scripts. Is it OK fixing with upcoming version ? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=628487 http://bugzilla.novell.com/show_bug.cgi?id=628487#c2 Christian Boltz <suse-beta@cboltz.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|suse-beta@cboltz.de | --- Comment #2 from Christian Boltz <suse-beta@cboltz.de> 2010-08-06 00:57:12 CEST --- No problem for me - I have already changed the configfile myself ;-) However you should probably (additionally) open a bugreport upstream - /usr/share/courier-imap/ is a very bad default location for the certificates. It violates the FHS, makes read-only or shared /usr impossible etc. A good default location for the certificates would be in /etc/courier/ or /etc/ssl/private/. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=628487 http://bugzilla.novell.com/show_bug.cgi?id=628487#c3 Christian Wittmer <chris@computersalat.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO CC| |chris@computersalat.de InfoProvider| |suse-beta@cboltz.de --- Comment #3 from Christian Wittmer <chris@computersalat.de> 2010-08-06 07:35:04 UTC --- There is no need to report upstream cause there is a new configure option "--with-certsdir" in devel release (courier-imap-4.8.0.20100628). I backported this patch for 4.8.0 in server:mail. Could you try it and give feedback. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=628487 https://bugzilla.novell.com/show_bug.cgi?id=628487#c4 Christian Wittmer <chris@computersalat.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED InfoProvider|suse-beta@cboltz.de | Resolution| |FIXED --- Comment #4 from Christian Wittmer <chris@computersalat.de> 2010-12-13 23:16:33 UTC --- no feedback :( -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=628487 http://bugzilla.novell.com/show_bug.cgi?id=628487#c5 --- Comment #5 from Bernhard Wiedemann <bwiedemann@suse.com> --- This is an autogenerated message for OBS integration: This bug (628487) was mentioned in https://build.opensuse.org/request/show/46028 Factory / courier-imap -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com