Cannot load CA Data
Wil Cooley
wcooley at nakedape.cc
Fri Feb 27 17:51:55 EST 2004
On Fri, 2004-02-27 at 14:10, Terrence Martin wrote:
> I have the following in my log file
>
> Feb 27 13:23:07 moonfruit imapd[21825]: TLS engine: cannot load CA data
> Feb 27 13:23:07 moonfruit imapd[21825]: starttls: TLSv1 with cipher
> AES256-SHA (256/256 bits new) no authentication
> Feb 27 13:23:07 moonfruit imapd[21825]: login:
> kosmo.ucsd.edu[132.239.27.252] bhill plaintext+TLS
>
> Now I have a signed cert and SSL appears to be working fine. Is this an
> error I should be worried about? What would make the error go away?
CA data is only useful if you're using client-side certificates, but
you're only using server-side certificates, so it doesn't matter. If
you want to silence it, provide a bundle of CA certificates (like those
that come with mod_ssl). You might even be able to make /dev/null the
CA bundle file.
Wil
--
Wil Cooley wcooley at nakedape.cc
Naked Ape Consulting http://nakedape.cc
* * * * Linux, UNIX, Networking and Security Solutions * * * *
* Naked Ape Consulting http://nakedape.cc *
* Cisco Support & Sales http://nakedape.cc/r/cisco *
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : https://lists.andrew.cmu.edu/mailman/private/info-cyrus/attachments/20040227/802a38ba/attachment.bin
More information about the Info-cyrus
mailing list