At http://www.gnode.net/basic-exim-config-with-plain-auth-over-tls/, the Exim configuration file says in the comments that the private key must *not* have a password. Unfortunately, our certificate issuer requires it now. So what do I do to get Exim to use the certificate password? This works fine in Dovecot.
Quoting Ernie Dunbar <maillist at lightspeed.ca>:> At http://www.gnode.net/basic-exim-config-with-plain-auth-over-tls/, the > Exim configuration file says in the comments that the private key must > *not* have a password. > > Unfortunately, our certificate issuer requires it now. > > So what do I do to get Exim to use the certificate password? This works > fine in Dovecot. > > > _______________________________________________ > Pkg-exim4-users mailing list > Pkg-exim4-users at lists.alioth.debian.org > http://lists.alioth.debian.org/mailman/listinfo/pkg-exim4-users > >I don''t think exim supports certificate passwords, you can use openssl to make a copy of the cert without a password for exim. Regards Jon -- Jonathan Plews - jonathan at plews.org.uk ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: PGP Digital Signature URL: <http://lists.alioth.debian.org/pipermail/pkg-exim4-users/attachments/20110217/33771d40/attachment.pgp>
Ernie Dunbar <maillist at lightspeed.ca> wrote:> At http://www.gnode.net/basic-exim-config-with-plain-auth-over-tls/, > the Exim configuration file says in the comments that the private key > must *not* have a password.> Unfortunately, our certificate issuer requires it now.> So what do I do to get Exim to use the certificate password? This > works fine in Dovecot.The Certificate does not have a password, it is the private key which is encrypted. Your certificate issuer cannot enforce any encryption of the key, as it should never leave your server and is never transmitted anywhere. Just remove the passphrase from the key and you are done. Gr??e, Sven. -- Sig lost. Core dumped.