This is a multi-part message in MIME format.
--
@exim-team, greetings,
heres a update for your docs/config templates.
its required at least for cacert.org signed certs.
thank you.
Thomas Schorpp wrote:
> hi,
> dont understand, why this wont run:
>
> tls_certificate = /etc/ssl/certs/cacertorg-sddk.cer #crt?
> tls_privatekey = /etc/ssl/private/cacertorg-sddk.key
>
> tls_verify_certificates = /etc/ssl/certs/ca-certificates.crt
>
> is this depreceated?
yes
>
> exim430 source code requires pem BUNDLE...
> /* Set the certificate and private keys */
>
> if (cert_expanded != NULL)
> {
> DEBUG(D_tls) debug_printf("certificate file = %s\nkey file = %s\n",
> cert_expanded, key_expanded);
> rc = gnutls_certificate_set_x509_key_file(x509_cred, CS cert_expanded,
CS key_expanded, GNUTLS_X509_FMT_PEM); <---- ONLY ONE PEM FORMAT BUNDLE
file.
if (rc < 0) return tls_error(US"cert/key setup", host, rc); <--- error
you'll
get
> }
--
[ exim4.conf.template.diff of type text/x-patch deleted ]
--
