On Mon, 22 Dec 2003, Miham KEREKES wrote: > > I do not know where you store your secrets, I assume sasldb? If so, > Yes. > > > sasl_pwcheck_method: auxprop > > sasl_auxprop_plugin: sasldb > > sasl_mech_list: plain > Ok. Works. Or at least: the error changed :-( > > * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE UIDPLUS > ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT THREAD=ORDEREDSUBJECT > THREAD=REFERENCES IDLE STARTTLS LISTEXT LIST-SUBSCRIBED ANNOTATEMORE > 00000000 OK Completed > 00000001 STARTTLS > 00000001 NO Error initializing TLS > Unable to negotiate TLS with this server > 00000002 LOGOUT > * BYE LOGOUT received > 00000002 OK Completed > Unable to negotiate TLS with this server > > In syslog: > Dec 22 23:29:15 merope cyrus/imapd[31767]: unable to get private key from > '/etc/ssl/private/cyrus-global.key' > Dec 22 23:29:15 merope cyrus/imapd[31767]: TLS engine: cannot load cert/key data > Dec 22 23:29:15 merope cyrus/imapd[31767]: error initializing TLS > > What is mistaken? File is readable, even world-wide for sure!
The perms are not the problem, it is the content of the file. Double check your ssl/tls setup. > I made the certs by following this description: > http://www.irbs.net/internet/info-cyrus/0207/0265.html > Instructions here seem pretty reasonable. -- Igor