[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Auto plugged off?

To: wl-en@lists.airs.net
Subject: Re: Auto plugged off?
From: Simon Brown <simon@cliffestones.demon.co.uk>
Date: Wed, 30 Jun 2010 11:37:18 +0100
Delivered-to: wl-en@lists.airs.net
In-reply-to: <20100627.182602.175049880.tats%nobody@tats.iris.ne.jp>
List-help: <mailto:wl-en-ctl@lists.airs.net?body=help>
List-id: wl-en.lists.airs.net
List-owner: <mailto:wl-en-admin@lists.airs.net>
List-post: <mailto:wl-en@lists.airs.net>
List-software: fml [fml stable 20011102.2100]
List-unsubscribe: <mailto:wl-en-ctl@lists.airs.net?body=unsubscribe>
References: <1277567950.23826.1382019081@webmail.messagingengine.com> <878w61yosn.wl%v.mayatskih@gmail.com> <20100627.182602.175049880.tats%nobody@tats.iris.ne.jp>
Reply-to: wl-en@lists.airs.net
User-agent: Wanderlust/2.15.9 (Almost Unreal) SEMI/1.14.6 (Maruoka) FLIM/1.14.9 (Gojō) APEL/10.8 Emacs/23.1 (x86_64-pc-linux-gnu) MULE/6.0 (HANACHIRUSATO)

At Sun, 27 Jun 2010 18:26:02 +0900 (JST),
Tatsuya Kinoshita <tats@vega.ocn.ne.jp> wrote:
> | To use the ssl feature, install the gnutls-bin package and the
> | ca-certificates package.  In the startup file
> | (/etc/emacs/site-start.d/*wl-beta.el), ssl-program-name is set to
> | gnutls-cli instead openssl, and ssl-program-arguments is set to verify
> | certificates.  If you encounter a connection failure, execute gnutls-cli
> | directly to diagnose.  See also the manual of gnutls-cli.
> | 
> | (setq ssl-program-name "gnutls-cli")
> | (setq ssl-program-arguments
> |  '("--port" service
> |    "--x509cafile" "/etc/ssl/certs/ca-certificates.crt" ;; verify certificates
> |    host))
I have just upgraded to debian's wl-beta package from the Ubuntu one,
thank you Tatsuya.

However I can't now access one of my imap accounts due to a
certificate problem. Running the command shown above yields:
Resolving 'imap.student.gla.ac.uk'...
Connecting to '130.209.14.155:993'...
- Certificate type: X.509
 - Got a certificate list of 2 certificates.
 - Certificate[0] info:
  - subject `C=GB,ST=Scotland,L=Glasgow,O=University of Glasgow,OU=IT Services,CN=imap.gla.ac.uk', issuer `C=BE,O=Cybertrust,OU=Educational CA,CN=Cybertrust Educational CA', RSA key 2048 bits, signed using RSA-SHA, activated `2009-08-12 14:57:14 UTC', expires `2012-08-12 14:57:14 UTC', SHA-1 fingerprint `41655d6147b0ddaa75cfab94a8a80a4f43ab9091'
 - Certificate[1] info:
  - subject `C=BE,O=Cybertrust,OU=Educational CA,CN=Cybertrust Educational CA', issuer `C=US,O=GTE Corporation,OU=GTE CyberTrust Solutions\, Inc.,CN=GTE CyberTrust Global Root', RSA key 2048 bits, signed using RSA-SHA, activated `2006-03-14 20:30:00 UTC', expires `2013-03-14 23:59:00 UTC', SHA-1 fingerprint `60983654d7ec611d76c2cd5557ca47ad3930c9ca'
- The hostname in the certificate matches 'imap.student.gla.ac.uk'.
- Peer's certificate issuer is not a CA
- Peer's certificate is NOT trusted
- Version: TLS1.0
- Key Exchange: RSA
- Cipher: AES-128-CBC
- MAC: SHA1
- Compression: NULL
*** Verifying server certificate failed...

The GTE Cybertrust Global root cert is included in Ubuntu. Can anyone
advise as to the problem?

Thanks

Simon

Follow-Ups:
- Re: Auto plugged off?
  - From: Erik Hetzner <ehetzner@gmail.com>
- Re: Auto plugged off?
  - From: Vitaly Mayatskikh <v.mayatskih@gmail.com>

References:
- Auto plugged off?
  - From: "Ian D. Leroux" <idleroux@fastmail.fm>
- Re: Auto plugged off?
  - From: Vitaly Mayatskikh <v.mayatskih@gmail.com>
- Re: Auto plugged off?
  - From: Tatsuya Kinoshita <tats@vega.ocn.ne.jp>

Prev by Date: Re: wrong argument type
Next by Date: Search folders
Previous by thread: Re: Auto plugged off?
Next by thread: Re: Auto plugged off?
Index(es):
- Date
- Thread