|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Andreas Meyer (anmeyer
anup.de)
Date: Sat Mar 01 2003 - 14:48:56 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Am Sat, 1 Mar 2003 20:14:04 +0100 (CET) schrieb Andreas Meyer:
> and then I do a:
> openssl verify -verbose -purpose sslserver ../newcert.pem
> ../newcert.pem: /C=DE/ST=RPL/L=Landau/O=private/OU=home/CN=Andreas/Email=andreasgamma
> error 20 at 0 depth lookup:unable to get local issuer certificate
>
> And now this seems strange to me. What is happening? Why can't openssl
> find the local issuer certificate?
oh oh, I'm sorry! I now know how to use this parameters.
openssl verify -verbose -CAfile ../cacert.pem -purpose sslclient ./01.pem
./01.pem: OK
Now I get:
postfix/smtp[17650]: verify error:num=19:self signed certificate in certificate chain
postfix/smtp[17650]: Peer verification: CommonName in certificate does not match: meyer != delta.meyer.home
postfix/smtp[17650]: Unverified: subject_CN=Meyer, issuer=Meyer
I guess the CN has to be the same name as the mailserver :-)
Postfix is very kind to tell me.
--
Andreas Meyer
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]