On 11/01/2014 06:45 AM, Oswald Buddenhagen wrote: > On Fri, Oct 31, 2014 at 10:17:48PM -0400, Anthony DiSante wrote: >> Connecting to mail.mysite.com (W.X.Y.Z:993)... >> Error, certificate owner does not match hostname mail.mysite.com >> >> What can I do? >> > continue where the thread you linked ended? >
Well, based on your comments in that thread, I didn't know if perhaps this ended up being a bug, or you learned something else about it in the meantime. But I did try your openssl suggestion as well. The -verbose flag returns an "unknown option" error. Without -verbose, and without specifying a cert, it appears to connect successfully (though mentions a self-signed cert error) and drops me at a prompt: _____ $ openssl s_client -connect mail.mysite.com:993 CONNECTED(00000003) depth=3 C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root verify error:num=19:self signed certificate in certificate chain verify return:0 --- ... --- No client certificate CA names sent --- SSL handshake has read 6188 bytes and written 411 bytes --- ... --- * OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE AUTH=PLAIN AUTH=LOGIN] Dovecot ready. _____ But when I specify my cert, it fails to connect: _____ $ openssl s_client -connect mail.mysite.com:993 -cert /mail/certs/mail.mysite.com unable to load client certificate private key file 140542267004576:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:696:Expecting: ANY PRIVATE KEY _____ But to my knowledge, I don't have a private key file; I've never entered one into my Thunderbird nor OfflineIMAP configurations? Thanks, -- Anthony DiSante ------------------------------------------------------------------------------ _______________________________________________ isync-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/isync-devel
