At Sun, 07 Oct 2012 10:18:44 +0100, Francesco Mazzoli wrote: > > At Thu, 04 Oct 2012 17:59:34 -0400, > Vitaly Mayatskikh wrote: > > If you use gnutls-cli as your ssl-program-name then look for > > --insecure argument. From gnutls-cli man: > > > > --insecure > > Don't abort program if server certificate can't be validated. > > That's already what I'm using: > > (setq ssl-program-name "gnutls-cli" > ssl-program-arguments '("--port" service > "--insecure" > "--x509cafile" "/etc/ssl/certs/ca-certificates.crt" > host)) You could try to connect to the server on the command line and use GnuTLS with the `--verbose' option. E.g. gnutls-cli --verbose --port PORT --insecure --x509cafile /etc/ssl/certs/ca-certificates.crt HOST And check the verbose program output. Best, -- David -- OpenPGP... 0x99ADB83B5A4478E6 Jabber.... dmjena@jabber.org Email..... dmaus@ictsoc.de
Attachment:
pgpb02hnDNFBz.pgp
Description: OpenPGP Digital Signature