On 2010-05-09 19:43 +0200, Camaleón wrote: > (...) > >> May 9 16:30:01 rimmer postfix/smtp[10643]: certificate verification failed >> for NEWSERVER[NEWSERVER-IPADDR]:587: untrusted issuer /L=ValiCert Validation >> Network/O=ValiCert, Inc./OU=ValiCert Class 2 Policy Validation >> Authority/CN=http://www.valicert.com//emailaddress=i...@valicert.com > > Server replies that does not trust the issuer of that CA.
I believe it's postfix itself which does not trust the CA because it does not know it. > (...) > >> May 9 16:30:01 rimmer postfix/smtp[10643]: Untrusted TLS connection >> established to NEWSERVER[NEWSERVER-IPADDR]:587: TLSv1 with cipher RC4-MD5 >> (128/128 bits) > > I guess your are having problems with the certificate itself. It cannot > be verified by the remote server. It's the other way around, postfix cannot verify the remote server's certificate. > Note: I think Thunderbird uses its own SSL CA root certificates database... The problem with postfix is that it runs chrooted and the CA certificates are not copied into the chroot. See #287795¹. Sven ¹ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=287795 -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87tyqgc43w....@turtle.gmx.de
