Cyrus21 does not work corectly with SSL
Hello, I have a Cyrus21 installation (Sarge). When I'm connect to cyrus
first time (after cyrus start) :
nico@my_host:~$ openssl s_client -connect my_host.my_domain.com:imaps
CONNECTED(00000004)
depth=1 /C=MY/ST=France/L=SmallTown/O=Toto/OU=Certification Services
Division/CN=Toto Root CA/emailAddress=toto@bidon.com
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/C=MY/ST=France/L=SmallTown/O=Toto/OU=Secure Imap
Server/CN=imap.winch.my/emailAddress=toto@bidon.com
i:/C=MY/ST=France/L=SmallTown/O=Toto/OU=Certification Services
Division/CN=Toto Root CA/emailAddress=toto@bidon.com
1 s:/C=MY/ST=France/L=SmallTown/O=Toto/OU=Certification Services
Division/CN=Toto Root CA/emailAddress=toto@bidon.com
i:/C=MY/ST=France/L=SmallTown/O=Toto/OU=Certification Services
Division/CN=Toto Root CA/emailAddress=toto@bidon.com
---
Server certificate
-----BEGIN CERTIFICATE-----
xxxxxxxxxxxx[.......]xxxxxxxxxxxxx
-----END CERTIFICATE-----
subject=/C=MY/ST=France/L=SmallTown/O=Toto/OU=Secure Imap
Server/CN=imap.winch.my/emailAddress=toto@bidon.com
issuer=/C=MY/ST=France/L=SmallTown/O=Toto/OU=Certification Services
Division/CN=Toto Root CA/emailAddress=toto@bidon.com
---
No client certificate CA names sent
---
SSL handshake has read 1697 bytes and written 340 bytes
---
New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA
Session-ID:
DDBD14C14A550B261DF5637605A55E94A63431585E0B8DB07FFF06CAF4D80701
Session-ID-ctx:
Master-Key:
5B7D7E71034EC16675174B3AADF505F6EA70D828054C705E16FCCBD0E942F60C73BF34605333147AE0D0B196A395C6AC
Key-Arg : None
Start Time: 1108414098
Timeout : 300 (sec)
Verify return code: 19 (self signed certificate in certificate
chain)
---
* OK my_host Cyrus IMAP4 v2.1.17-IPv6-Debian-2.1.17-3 server ready
But next time only :
nico@my_host:~$ openssl s_client -connect my_host.my_domain.com:imaps
CONNECTED(00000004)
Any sugestion ?
Thanks.
--
Nicolas Ledez
Reply to: