NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2006-07

TLS problem

From: Sven Frommholz - Konexxo GmbH (sven.frommholzkonexxo.de)
Date: Mon Jul 03 2006 - 05:08:57 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello list,

I'm having trouble to get postfix and tls working. My system is running
Debian Sarge, openssl-0.9.8b compiled with ./config shared and postfix-2.2.10
from source. My Makefile was made with

make makefiles CCARGS="-DUSE_TLS -DUSE_SASL_AUTH -I/usr/local/ssl/include
-I/usr/local/include/sasl -DHAS_PCRE -DHAS_MYSQL -I/usr/local/mysql/include/
-I/usr/include/pcre" AUXLIBS="-lssl -lcrypto -L/usr/local/ssl/lib
-L/usr/local/lib -lldap -L/usr/local/lib -llber -L/usr/local/lib -lsasl2
-L/lib -lpcre -L/usr/local/mysql/lib -lmysqlclient -lz -lm"

Compilation runs without errors and the binary is linked correctly:

ldd /usr/libexec/postfix/smtpd
        libssl.so.0.9.8 => /usr/local/ssl/lib/libssl.so.0.9.8 (0xb7f53000)
        libcrypto.so.0.9.8 => /usr/local/ssl/lib/libcrypto.so.0.9.8
(0xb7e1b000)
        libldap-2.3.so.0 => /usr/local/lib/libldap-2.3.so.0 (0xb7dee000)
        liblber-2.3.so.0 => /usr/local/lib/liblber-2.3.so.0 (0xb7de2000)
        libsasl2.so.2 => /usr/local/lib/libsasl2.so.2 (0xb7dcb000)
        libpcre.so.3 => /usr/lib/libpcre.so.3 (0xb7dbb000)
        libm.so.6 => /lib/tls/libm.so.6 (0xb7d99000)
        libdb-4.3.so => /usr/lib/libdb-4.3.so (0xb7cb4000)
        libnsl.so.1 => /lib/tls/libnsl.so.1 (0xb7ca0000)
        libresolv.so.2 => /lib/tls/libresolv.so.2 (0xb7c8e000)
        libc.so.6 => /lib/tls/libc.so.6 (0xb7b59000)
        libdl.so.2 => /lib/tls/libdl.so.2 (0xb7b56000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7f95000)

I also can start postfix, but when a client connects I get following lines in
my log:

postfix/master[26786]: daemon started -- version 2.2.10, configuration
/etc/postfix
postfix/smtpd[26825]: initializing the server-side TLS engine
postfix/smtpd[26825]: warning: cannot get private key from file
/etc/postfix/ssl/smtpd.key
postfix/smtpd[26825]: cannot load RSA certificate and key data

Those files exist and the private key is unencrypted. Maybe someone can point
me to what is going wrong here?

regards,
Sven

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]