On Sun, Nov 16, 2003 at 11:27:25AM +0100, Andreas Metzler wrote:
[...]
> My way of testing was using 'tls_verify_hosts = *' on the server-side
> exim, which showed quite clearly in the debug outputs (of both exims)
> that the client indeed sent a certificate. I'll crosscheck with an exim
> linked against openssl acting as server, and will use $tls_peerdn and
> $tls_certificate_verified in received_header_text to ease debugging.
No difference. exim-GnuTLS as client works as proposed.
I think I will have to take your offer:
| I can provide a server and an appropriately signed client-side
| certificate to test against if it would help anybody.
What version of gnutls are you using? If you are still using
0.8.9 perhaps you want to upgrade, as you might have been hit by
| gnutls7 (0.8.12-1) experimental; urgency=low
| * New upstream version:
| * Handles non-unix newline characters in X.509 certificates.
| (Closes: #202454)
cu andreas
