Displaying 4 results from an estimated 4 matches for "ssl_last_error".
2005 Sep 11
1
DSA support for TLS?
hi all,
i've dovecot TLS working correctly w/ locally generated *RSA* CA cert, domain
privkey & self-signed domain cert. to that end, my dovecot.conf includes:
ssl_key_file =
/var/Security/mail.testdomain.com.privkey.rsa.pem
ssl_cert_file = /var/Security/mail.testdomain.com.cert.rsa.pem
ssl_ca_file =
2015 Feb 11
2
[PATCH] Fix for client certificate validation does not work
...- X509_NAME *xname;
- BIO *bio;
- int i;
-
- bio = BIO_new_mem_buf(t_strdup_noconst(ca), strlen(ca));
- if (bio == NULL)
- i_fatal("BIO_new_mem_buf() failed");
- inf = PEM_X509_INFO_read_bio(bio, NULL, NULL, NULL);
- if (inf == NULL)
- i_fatal("Couldn't parse ssl_ca: %s", ssl_last_error());
- BIO_free(bio);
-
- if (xnames_r != NULL) {
- *xnames_r = sk_X509_NAME_new_null();
- if (*xnames_r == NULL)
- i_fatal_status(FATAL_OUTOFMEM, "sk_X509_NAME_new_null() failed");
- }
- for(i = 0; i < sk_X509_INFO_num(inf); i++) {
- itmp = sk_X509_INFO_value(inf, i);
- if(itmp-&...
2013 Sep 10
2
dovecot and PFS
Hi
Is there known advices on how to favor PFS with dovecot?
In Apache, I use the following directives, with cause all modern
browsers to adopt 256 bit PFS ciphers, while keeping backward
compatibility with older browsers and avoiding BEAST attack:
SSLProtocol all -SSLv2
SSLHonorCipherOrder On
SSLCipherSuite ECDHE at STRENGTH:ECDH at STRENGTH:DH at STRENGTH:HIGH:-SSLv3-SHA1:-TLSv10
2003 Jun 15
3
0.99.10-test12
http://dovecot.procontrol.fi/test/
I should have released 0.99.10 already I think.. There's just two
annoying problems that I think should be fixed first:
- PAM: If user gives a wrong password, dovecot-auth process sleeps for
two seconds, blocking everyone else who are trying to authenticate at
the time. So using PAM isn't very good idea at the moment.
- OpenSSL problems. Are they