Lindsay Haisley wrote:
>
> Excellent. Thank you! I was thinking I ought to be able to strace this
> but had forgotten that one could attach strace to a running process.
> Here's the output:
...
> [pid 5684] open("/etc/ssl/cert.pem", O_RDONLY) = -1 ENOENT (No such file or
> directory)
> [pid 5684] stat("/etc/ssl/certs/c33a80d4.1", 0x7fff935ca8f0) = -1 ENOENT (No
> such file or directory)
...
> Indeed, there is no c33a80d4.1 cert file. I'm not familiar with the
> details of the TLS mechanism. Is this a file that's expected to be
> there as a result of the TLS negotiation with the remote server?
I don't think so. I think your ssl library is searching the directory
at your TLS_TRUSTCERTS setting. I'm not sure how that's supposed to
work... On my systems, TLS_TRUSTCERTS points at a single file which is
a bundle of the trusted authorities.
------------------------------------------------------------------------------
SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
The future of the web can't happen without you. Join us at MIX09 to help
pave the way to the Next Web now. Learn more and register at
http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
