Re: pkg/52918: mail/dovecot does not supply intermediate CA certs

To: pkg-manager%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,pkgsrc-bugs%netbsd.org@localhost,Hauke Fath <hf%spg.tu-darmstadt.de@localhost>
Subject: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
From: Filip Hajny <filip%joyent.com@localhost>
Date: Thu, 11 Jan 2018 18:50:01 +0000 (UTC)

The following reply was made to PR pkg/52918; it has been noted by GNATS.

From: Filip Hajny <filip%joyent.com@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
Date: Thu, 11 Jan 2018 19:45:13 +0100

 > 11. 1. 2018 v 19:25, Hauke Fath <hf%spg.tu-darmstadt.de@localhost>:
 > 
 > On Thu, 11 Jan 2018 16:25:00 +0000 (UTC), Filip Hajny wrote:
 >> The way I understand the docs, ssl_ca was intended for client =3D
 >> certificate authentication only.
 > 
 > Upstream's docs appear to be on your side:=20
 > <https://wiki.dovecot.org/SSL/DovecotConfiguration>
 > 
 >> And I have always bundled my CA intermediate certificates with the one =
 > =3D
 >> specified using ssl_cert, because that worked for me in the past.
 > 
 > If that indeed (still) works (I did not check, but rolled back), there=20
 > is no need for a roll-back.=20
 
 I have not checked in 2.3.0, but that is what upstream suggested
 in your bug report.
 
 > Still, the option used to work for chained server CA certs, and it=20
 > doesn't any more on 2.3.
 
 I understood that part.
 
 -F

Prev by Date: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
Next by Date: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
Previous by Thread: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
Next by Thread: Re: pkg/52918: mail/dovecot does not supply intermediate CA certs
Indexes:

Home | Main Index | Thread Index | Old Index