Autor: Christopher Chaduka Data: Para: exim-users Asunto: Fwd: Re: [Exim] [Slightly OT] Exim, TLS and certificates
--
Just to answer myself. Done that and it's now working.
Thanx Tamas
Kiri
>Date: Wed, 12 Feb 2003 19:19:46 +0200
>To: Tamas TEVESZ <ice@???>
>From: Christopher Chaduka <cchaduka@???>
>Subject: Re: [Exim] [Slightly OT] Exim, TLS and certificates
>Cc: exim-users@???
>
>Aaaaah, got that fixed, now I am getting this error in my Exim logs:
>
>(SSL_accept): error:1408B0EA:SSL routines:SSL3_GET_CLIENT_KEY_EXCHANGE:tls
>rsa encrypted value length is wrong
>
>Does this mean I should use 1024 instead of 2048 in this line during key
>generation:
>
>openssl req -newkey rsa:2048 -keyout ca.key -out ca.req
>
>
>At 17:06 02/12/2003 +0100, Tamas TEVESZ wrote:
>
>>On Wed, 12 Feb 2003, Christopher Chaduka wrote:
>>
>> > 1872 8:12.7 Dialog: "SSL Negotiation Failed: Certificate bad: Destination
>> > Host name does not match host name in certificate\r\n"
>>
>>has been discussed not much ago.
>>
>>--><--
>>
>> From: "Suresh Ramasubramanian" <mallet@???>
>> Message-ID: <00e001c2bfdd$ebd5f320$0201a8c0@quirk>
>> Date: Sun, 19 Jan 2003 22:27:16 +0530
>> Subject: Re: [Exim] Eudora AUTH over TLS
>>
>> [...] Another hassle is that Eudora is extremely anal
>> about the CN name on the cert matching the hostname of your smtp
>> server.
>>
>>
>>--><--
>>
>>--
>>[-]
>>... and the rest is silence.
>
>--
>
>Christopher Chaduka
>Webmaster/Systems Administrator
>Technical Department
>M-Web Zimbabwe
>Tel: +263 4 253333 Fax: +263 4 708055
>Mobile: +263 11 600994
>http://www.mweb.co.zw --