Re: [exim] renewing the SSL certificate doesn't work

Top Page
Delete this message
Reply to this message
Author: Gary Stainburn
Date:  
To: exim-users
Subject: Re: [exim] renewing the SSL certificate doesn't work
Hi Jeremy,

I did suspect this, but the private key is in the correct format.

-----BEGIN PRIVATE KEY-----
MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCfHGSy2Xa86a6u
[24 extra lines]
teQhR4s9S0uGkQ5UJMz51JY=
-----END PRIVATE KEY-----

Also, Carrying out the same process for the Apache server on my web
server, using the same certificate, bundle, and private key has worked fine.

Gary

On 27/02/2023 10:52, Jeremy Harris via Exim-users wrote:
> On 27/02/2023 10:21, Gary Stainburn via Exim-users wrote:
>>
>> TLS error on connection from mail14.atl281.mcsv.net [198.2.143.14]
>> (SSL_CTX_use_PrivateKey_file
>> file=/etc/pki/tls/certs/ringways.co.uk.key): error:0906D06C:PEM
>> routines:PEM_read_bio:no start line
>>
>> I seem to remember in the past that I had to merge the certificate
>> with the bundle, so I did that too, but I still get the above error.
>
> The error notes specifically the private-key file, so the bundle
> is not the issue.
>
> What does the file look like (do NOT post the whole thing publically!) ?
>
>
> The first couple of line should be, for the expected format, something
> like
>
>    -----BEGIN PRIVATE KEY-----
>    MIIEvAIBADANBgkqh...
>
> and there should be a line
>
>    -----END PRIVATE KEY-----
>
> after the block of ascii-ized binary data.
>