[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: failed SMTP auth



At Sun, 9 Jan 2011 00:31:13 -0500,
Daniel Anderson wrote:
> Opening STARTTLS connection to `exchange-hub.my-corp-server.com:587'...done
> STARTTLS negotiation failed: DOW
> STARTTLS
> 220 2.0.0 SMTP server ready
> *** Starting TLS handshake
> - Certificate type: X.509
> - Got a certificate list of 1 certificates.
> - Certificate[0] info:
>  - subject `CN=HUBFMT01', issuer `CN=HUBFMT01', RSA key 2048 bits,
> signed using RSA-SHA1, activated `2010-07-09 00:48:34 UTC', expires
> `2015-07-09 00:48:34 UTC', SHA-1 fingerprint
> `52e7238d53d618da6283d93758563c281a3fd184'
> - The hostname in the certificate does NOT match 'exchange-hub.peer1.com'

Looks like the program responsible for SSL/TLS stops here because the
server certificate verification failed.

What is `ssl-program-name' set to?  

Depending on the program you might pull the switch
(i.e. `ssl-program-arguments') to make it ignore this verification
failure (for gnutls its --insecure).  Of course defeats one of the
purposes of using SSL/TLS; better solution could be to use the
hostname in the certificate's subject CN if possible.  

> 
> byte-code: Wrong type argument: arrayp, nil
>

But this should not happen and/or might or might not be related to the
verification issue.  If you turn on Emacs' debugging feature

M-x toggle-debug-on-error RET

Which should provide a backtrace as soon as the "Wrong type argument"
hits.  The backtrace might or might not give us a clue about what
causes this error.

HTH,
  -- David

-- 
OpenPGP... 0x99ADB83B5A4478E6
Jabber.... dmjena@jabber.org
Email..... dmaus@ictsoc.de

Attachment: pgpKuxdSzRob4.pgp
Description: PGP signature