著者: Graeme Fowler 日付: To: exim-users 題目: Re: [exim] TLS "certificate and the given key do not match"
On 8 Jul 2013, at 14:12, Steve Madsen <steve@???> wrote: > I've had TLS running just fine with a self-signed certificate for the last ten years. Last night it finally expired, and I thought I'd pay for a $9 Comodo PositiveSSL certificate from Namecheap. After installing it, I can't connect and authenticate in order to send email. The error is:
>
> 2013-07-08 08:48:30 TLS error on connection from xxx.yyy.com ([192.168.1.12]) [xxx.xxx.xxx.xxx] (cert/key setup: cert=/etc/ssl/2013.smtp.moonglade.com.crt+ca key=/etc/ssl/2013.smtp.moonglade.com.key): The certificate and the given key do not match.
That comes from the GnuTLS handling code; I would surmise that the permissions on either the certificate or key are too strict and prevent Exim from reading it/them.