Re: [exim] renewing the SSL certificate doesn't work

Top Page
Delete this message
Reply to this message
Author: Heiko Schlittermann
Date:  
To: exim-users
Subject: Re: [exim] renewing the SSL certificate doesn't work
Gary Stainburn via Exim-users <exim-users@???> (Mo 27 Feb 2023 11:21:56 CET):
>
> However, when I install the new files I get SSL errors.
>
> TLS error on connection from mail14.atl281.mcsv.net [198.2.143.14]
> (SSL_CTX_use_PrivateKey_file file=/etc/pki/tls/certs/ringways.co.uk.key):
> error:0906D06C:PEM routines:PEM_read_bio:no start line


Try

openssl rsa -in /etc/pki/tls/certs/ringways.co.uk.key -noout

If should read the key, if it works, try the same as the Exim runtime
user

sudo -u $(exim -n -bP exim_user) openssl rsa -in /etc/pki/tls/certs/ringways.co.uk.key -noout

both commands must not produce any error message, in fact, they must not
produce any output.

--
Heiko