Re: imapd on fc3 not working after upgrade

From: Michael Thomas (mtNOSPAMMING_at_armory.com)
Date: 05/17/05


Date: Tue, 17 May 2005 11:56:18 -0700

On Mon, 16 May 2005 21:23:53 -0400, Joseph Shraibman <jks@iname.com>
wrote:

>Tommy Reynolds wrote:
>> On Mon, 16 May 2005 20:46:11 -0400, Joseph Shraibman wrote:
>>
>>
>>>>Did you really upgrade from RH9, or did you re-install?
>>>>
>>>
>>>upgrade.
>>
>>
>> Ah, that explains why the IMAP stuff was missed.
>>
>> Well, as suggested earlier, try the "dovecot" rpm.
>>
>
>When I try to start up dovecot I get:
>
>May 16 21:04:41 tupari dovecot: Dovecot starting up
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>May 16 21:04:42 tupari dovecot: Login process died too early - shutting down
>May 16 21:04:42 tupari dovecot: child 8800 (login) returned error 89
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>
>
>May 16 21:04:42 tupari imap-login: Can't load private key file
>/usr/share/ssl/private/dovecot.pem: error:0B080074:x509 certificate
>routines:X509_check_private_key:key values mismatch
>
>I tried generating a new cert but it still doesn't work.

Pulled this out of /etc/dovecot.conf

# PEM encoded X.509 SSL/TLS certificate and private key. They're
opened before
# dropping root privileges, so keep the key file unreadable by anyone
but
# root. Included doc/mkcert.sh can be used to easily generate
self-signed
# certificate, just make sure to update the domains in
dovecot-openssl.cnf
ssl_cert_file = /usr/share/ssl/certs/dovecot.pem
ssl_key_file = /usr/share/ssl/private/dovecot.pem

I know I had to edit this file after dovecot was updated can't
remember what I had to do though.

MT