Anders la Cour Bentzon wrote: > On 2004-03-19 18:57, Roger Lipscombe wrote: >> Do I need a separate >> certificate, or should I just point BincIMAP at the certificate that >> Apache is using? > > Hi Roger, > > I use the same cert for both POP3 (stunnel), Apache (mod_ssl), IMAP > (Binc), and SMTP(starttls patch);
Thanks. That's a pointer in the right direction. I have another problem now, though: error initializing Binc IMAP: SSL negotiation failed: SSL error: unable to use private key in PEM file: /etc/opt/bincimap/bincimap.pem: error:0906406D: PEM routines:DEF_CALLBACK:problems getting password I created the bincimap.pem file with: # cat /etc/apache/ssl.key/server.key /etc/apache/ssl.crt/server.crt > /etc/opt/bincimap/bincimap.pem Am I correct in thinking that it's because my server.key file is passphrase-protected? If so, how do I go about fixing this? Should I remove the passphrase, or can I get BincIMAP to prompt for it at startup, like mod_ssl does? (I imagine that I can't get bincimap-up to prompt for it, because it's run off the back of tcpserver, so it'd have to prompt for _every_ incoming connection. Am I right? Should I just remove the passphrase?) Regards, Roger.
