Hi, I just install openssl 0.9.5a rpm version and qmail-1.0.3 with TLS.patch. According to the qmail/TLS patch information, I made cert.pem and put it into the qmail system control library /var/qmail/control/cert.pem. The smtp session was recorded below: [root@smtmail /root]# telnet smtmail.netvigator.com 25 Trying 203.198.7.166... Connected to smtmail.netvigator.com (203.198.7.166). Escape character is '^]'. 220 smtmail.netvigator.com ESMTP ehlo 250-smtmail.netvigator.com 250-PIPELINING 250-STARTTLS 250 8BITMIME STARTTLS 454 TLS not available: missing certificate (#4.3.0) and my openssl.cnf CA section looks like this: #################################################################### [ ca ] default_ca = CA_default # The default ca section #################################################################### [ CA_default ] dir = ./demoCA # Where everything is kept certs = $dir/certs # Where the issued certs are kept crl_dir = $dir/crl # Where the issued crl are kept database = $dir/index.txt # database index file. new_certs_dir = $dir/newcerts # default place for new certs. certificate = $dir/cacert.pem # The CA certificate serial = $dir/serial # The current serial number crl = $dir/crl.pem # The current CRL private_key = $dir/private/cakey.pem# The private key RANDFILE = $dir/private/.rand # private random number file Do I need to update the certs directory or did I miss any steps? Is there any step by step procedures for installing and configuring the openssl for mailing system. Thanks. K. F. YIm ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
