I'll have a look at these tomorrow, thanks
2013/11/22 Philippe Lelédy <[email protected]> > Le 22/11/13 18:22, Philippe Lelédy a écrit : > > > -3- I have a S/MIME certificate in my UA, but lacks ca file, so I get: > > debug: lka: X509 verify: unable to get local issuer certificate > smtp-in: Client certificate verification failed on session 76aea37b26a4f2e2 > debug: lka: authenticating for mycreds:phl > smtp-in: Accepted authentication for user phl on session 76aea37b26a4f2e2 > > Hence, it seems that OpenSMTPD has this undocumented feature that it is > able to authenticate using X509 certificate. Will give it a try. > > I tried with > > cat sub.class1.server.ca.pem ca.pem > sub-ca-bundle.ca.pem > > and > > pki smtp.mondomaine.fr ca > "/etc/ssl/startssl/sub-ca-bundle.ca.pem" > > with exactly the same failure. > > Philippe Lelédy >
