I reply to myself. The two tls files were wrongly owned by root. A "chown mail.mail tls*" fixed it. Christophe On Wed, Aug 07, 2002 at 05:18:45PM -0400, christophe barbé wrote: > I have some problems configuring exim to support TLS. > > I have installed exim-tls and openssl on a woody box (with security > update). > > In my exim.conf file I have : > > host_auth_accept_relay = * > auth_over_tls_hosts = * > tls_advertise_hosts = * > tls_certificate = /etc/exim/tls_certificate > tls_privatekey = /etc/exim/tls_privatekey > > And when I attemp to send a mail from an other computer (with > mozilla-mail) using authentification over tls I can see the following output : > > # exim -bd -d5 > ... > host in tls_advertise_hosts? yes (*) > SMTP>> 250-somewhere.net Hello adsl-27-25-72-9.cust.oldcity.dca.net [27.25.72.9] > 250-SIZE > 250-PIPELINING > 250-STARTTLS > 250 HELP > SMTP<< STARTTLS > using tls_certificate /etc/exim/tls_certificate > LOG: 0 MAIN > TLS error on connection from adsl-27-25-72-9.cust.oldcity.dca.net (somewhere.net) [27.25.72.9] (SSL_CTX_use_certificate_file): error:0200100D:system library:fopen:Permission denied > SMTP>> 454 OpenSSL/0.9.6beta currently unavailable > TLS failed to start > > Authentification is working when TLS is turned off. > > Any idea ? > > Christophe > > -- > Christophe Barbé <christophe.barbe@ufies.org> > GnuPG FingerPrint: E0F6 FADF 2A5C F072 6AF8 F67A 8F45 2F1E D72C B41E > > Ce que l'on conçoit bien s'énonce clairement, > Et les mots pour le dire arrivent aisément. > Nicolas Boileau, L'Art poétique -- Christophe Barbé <christophe.barbe@ufies.org> GnuPG FingerPrint: E0F6 FADF 2A5C F072 6AF8 F67A 8F45 2F1E D72C B41E Dogs come when they're called; cats take a message and get back to you later. --Mary Bly
Attachment:
pgp5LTeSx0sCx.pgp
Description: PGP signature