I updated source and rebuilt world and kernel with no change in sendmail's
behavior. This is the revision I have now:
root at Ace:/etc/mail/certs # svnlite info /usr/src/
Path: /usr/src
Working Copy Root Path: /usr/src
URL: svn://ace/src/stable/10
Relative URL: ^/stable/10
Repository Root: svn://ace/src
Repository UUID: ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f
Revision: 284384
Node Kind: directory
Schedule: normal
Last Changed Author: kib
Last Changed Rev: 284375
Last Changed Date: 2015-06-14 01:12:48 -0400 (Sun, 14 Jun 2015)
root at Ace:/etc/mail/certs # uname -a
FreeBSD Ace.nina.org 10.1-STABLE FreeBSD 10.1-STABLE #0 r284384: Sun Jun
14 16:40:15 EDT 2015 frank_s at Ace.nina.org:/usr/obj/usr/src/sys/GENERIC
amd64
and openssl:
root at Ace:/etc/mail/certs # openssl version
OpenSSL 1.0.1o-freebsd 12 Jun 2015
so I'm up to date there as well.
> /etc/rc.d/sendmail stop
> mv /etc/mail/certs/dh.param{,~old}
> openssl dhparam -out /etc/mail/certs/dh.param 2048
> /etc/rc.d/sendmail start
After the update I got your email and followed your instructions, except
for moving dh.param because it didn't exist, and sendmail is happy now.
I checked and there is still no mention of this in /usr/src/UPDATING so my
question is, when and how is dh.param supposed to be created? Since I'm
not the only one with this problem it doesn't seem to be something I did
or didn't do. What could have caused dh.param to not be generated?
Thanks,
Frank