Re: [exim] Can't read SSL key/cert, how to debug?

Top Page
Delete this message
Reply to this message
Author: Evgeniy Berdnikov
Date:  
To: exim-users
Subject: Re: [exim] Can't read SSL key/cert, how to debug?
On Mon, Dec 22, 2014 at 12:12:31PM +0100, Yves Goergen wrote:
> Here's what I got:

[...]
> > 3658 LOG: MAIN
> > 3658 TLS error on connection from ([IPv6:2001:a60:1027:xxxx:745c:6dcf:3ae9:71cb]) [2001:a60:1027:xxxx:745c:6dcf:3ae9:71cb] (gnutls_handshake): Could not negotiate a supported cipher suite.
> > 3658 TLS failed to start


OK. Exim is built with Gnutls, and you are trying to connect with OpenSSL,
without success in cipher negotiation, let's try to use gnutls-cli first.
Install gnutls-bin package for Ubuntu, then run

% gnutls-cli -p 465 localhost --no-ca-verification --crlf -d4

and post the output here.
--
Eugene Berdnikov