[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

TLS: checking a self-signed certificate

To: wanderlust mailing list post articles <wl-en@ml.gentei.org>
Subject: TLS: checking a self-signed certificate
From: "Neal H. Walfield" <neal@walfield.org>
Date: Wed, 25 Mar 2015 15:11:28 +0100
User-agent: Wanderlust/2.14.0 (Africa) SEMI/1.14.6 (Maruoka) FLIM/1.14.9 (Gojō) APEL/10.8 Emacs/23.4 (x86_64-pc-linux-gnu) MULE/6.0 (HANACHIRUSATO)

Hi,

I've just upgraded to Debian Jessie.  When I connect to my mail
server, gnutls now complains that it can't verify the server's
certificate ("The certificate is NOT trusted.  The certificate issuer
is unknown.").  I don't want to enable insecure mode as I've
apparently been using so far.  Instead, I want gnutls to check the
certificate, which I have saved locally.  I can't figure out how to do
that, however.  I suspect that it has something to do with
'ssl-program-arguments', but I can't figure out the magic incantation.
I thought I could just pass --x509certfile /home/us/mail.pem, but I
get the same error.  Anyone have any ideas?

Thanks,

Neal

Follow-Ups:
- Re: TLS: checking a self-signed certificate
  - From: "Neal H. Walfield" <neal@walfield.org>
- Re: TLS: checking a self-signed certificate
  - From: Kazuhiro Ito <kzhr@d1.dion.ne.jp>

Prev by Date: Re: Default Address with multiple Addresses
Next by Date: Re: TLS: checking a self-signed certificate
Previous by thread: Default Address with multiple Addresses
Next by thread: Re: TLS: checking a self-signed certificate
Index(es):
- Date
- Thread