Re: imapd on fc3 not working after upgrade

From: Michael Thomas (mtNOSPAMMING_at_armory.com)
Date: 05/17/05


Date: Tue, 17 May 2005 11:56:18 -0700

On Mon, 16 May 2005 21:23:53 -0400, Joseph Shraibman <jks@iname.com>
wrote:

>Tommy Reynolds wrote:
>> On Mon, 16 May 2005 20:46:11 -0400, Joseph Shraibman wrote:
>>
>>
>>>>Did you really upgrade from RH9, or did you re-install?
>>>>
>>>
>>>upgrade.
>>
>>
>> Ah, that explains why the IMAP stuff was missed.
>>
>> Well, as suggested earlier, try the "dovecot" rpm.
>>
>
>When I try to start up dovecot I get:
>
>May 16 21:04:41 tupari dovecot: Dovecot starting up
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>May 16 21:04:42 tupari dovecot: Login process died too early - shutting down
>May 16 21:04:42 tupari dovecot: child 8800 (login) returned error 89
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>
>
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>
>I tried generating a new cert but it still doesn't work.

Pulled this out of /etc/dovecot.conf

# PEM encoded X.509 SSL/TLS certificate and private key. They're
opened before
# dropping root privileges, so keep the key file unreadable by anyone
but
# root. Included doc/mkcert.sh can be used to easily generate
self-signed
# certificate, just make sure to update the domains in
dovecot-openssl.cnf
ssl_cert_file = /usr/share/ssl/certs/dovecot.pem
ssl_key_file = /usr/share/ssl/private/dovecot.pem

I know I had to edit this file after dovecot was updated can't
remember what I had to do though.

MT



Relevant Pages

  • Re: imapd on fc3 not working after upgrade
    ... OK I figured out that dovecot didn't like the cert and private key being ... Now I'm able to see my inbox but not my other ...
    (linux.redhat)
  • self-signing with gnutls tools?
    ... I think I understand enough to know I need to first create my own authority, then use that to create the cert that dovecot will use, then get the authority installed with the root certs on any mail client machine I want to connect from. ... Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines ...
    (Fedora)
  • Re: imapd on fc3 not working after upgrade
    ... Joseph Shraibman wrote: ... > OK I figured out that dovecot didn't like the cert and private key being ...
    (linux.redhat)