It's interesting that it is like that. I never even payed attentiont to it. Take a look at w-imap*/imap*/Makefile. You'll see under bso that those setting are compile time options. Here is a patch to put the certs into /etc/ssl instead.

--- Makefile.orig       Sat Dec 25 11:05:25 2004
+++ Makefile    Thu Jul 28 09:46:05 2005
@@ -300,7 +300,7 @@

 bsf bso:       an
        $(BUILD) BUILDTYPE=$@ \
- SPECIALS="GSSDIR=/usr SSLDIR=/usr SSLINCLUDE=/usr/include/openssl SSLCERTS=/etc/ssl/certs SSLKEYS=/etc/ssl/private LOCKPGM=/usr/sbin/mlock" + SPECIALS="GSSDIR=/usr SSLDIR=/usr SSLINCLUDE=/usr/include/openssl SSLCERTS=/etc/ssl SSLKEYS=/etc/ssl LOCKPGM=/usr/sbin/mlock"

 cyg:   an
        $(BUILD) BUILDTYPE=cyg \
@@ -462,8 +462,6 @@
        @echo ++ SSLTYPE=$(SSLTYPE).nopwd
@echo +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
        @echo
- @echo Do you want to continue this build anyway? Type y or n please:
-       @$(SH) -c 'read x; case "$$x" in y) exit 0;; *) exit 1;; esac'

 sslnone:
@echo +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


stupidmail4me wrote:
I sent this yesterday to misc, and I thought maybe
ports is a better list, because I'm asking about the
package itself.

I've installed the UW-IMAP package and placed the
correct start up lines in /etc/inetd.conf. I've gotten
this package to work correctly on past installations.
(I'm not asking about startup, I'm focusing on ssl).

Whenever I try to connect using IMAP, I get the
following error:
Unable to load certificate from
/etc/ssl/certs/imapd.pem.

That's because that's not where that certificate is,
as per the instructions it's in /etc/ssl/imapd.pem.
Did the package change where to place the certs
without updating the documentation?

My sendmail installation is using TLS and that's where
my confCACERT_PATH etc. varialbes point to:
define(`CERT_DIR', `/etc/ssl')dnl
define(`confCACERT_PATH', `CERT_DIR/certs')dnl
define(`confCACERT', `CERT_DIR/certs/CA.crt')dnl
define(`confSERVER_CERT',
`CERT_DIR/certs/mail.crt')dnl
define(`confSERVER_KEY',`CERT_DIR/private/mail.key')dnl
define(`confCLIENT_CERT',
`CERT_DIR/certs/mail.crt')dnl
define(`confCLIENT_KEY',`CERT_DIR/private/mail.key')dnl

IMAP doesn't read any of these from sendmail, does it?
Is that why it's looking for a cert in /etc/ssl/certs?

-James

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com

Reply via email to