Re: [exim] SSL wildcard certificate intermediate CA weirdnes…

Top Page
Delete this message
Reply to this message
Author: Heiko Schlittermann
To: Exim-users
Subject: Re: [exim] SSL wildcard certificate intermediate CA weirdness
Christian Balzer <chibi@???> (Mo 23 Dez 2019 06:07:46 CET):
> >
> I've tried this with "openssl s_server" and it works either which way,
> unsurprisingly.
> "openssl s_server -cert wildcard.crt -key wildcard.key -CAfile ca.crt"
> I can't get gnutls_server to use/send the CA intermediate at all, only the
> server cert is sent with:
> "gnutls-serv --x509keyfile=wildcard.key --x509certfile=wildcard.crt
> --x509cafile=ca.crt"

I'd expect --x509cafile only useful for verification of client certificates.
So I'd append the intermediate cert to the wildcard.crt file.

How did you specify your intermediate cert file in your exim