dead.letter

A technical blog focusing on Linux, FreeBSD, DNS, security and virtualization.

2004-01-26

Exim certificate revocation check (CRL) working!

Certificate revocation test within Exim - based on the patch the Vivek sent. 


15879 SSL verify ok: depth=1 cert=/C=US/ST=Washington/L=Seattle/O=Credentia/OU=Certificate Services/

CN=Credentia Root Certification Authority 1

15879 About to call ssl_callback_SSLVerify_CRL

15879 CA CRL: Issuer: /C=US/ST=Washington/L=Seattle/O=Credentia/OU=Certificate 

Services/CN=Credentia Root Certification Authority 1, lastUpdate: Jan 26 16:18:13 2004 

GMT, nextUpdate: Jan 27 16:18:13 2004 GMT

15879 SSL peer: /C=US/ST=Washington/L=Seattle/O=Credentia/OU=Secure Mail 

Server/CN=giggler.foster.cc/emailAddress=root@foster.cc

15879 About to call ssl_callback_SSLVerify_CRL

15879 LOG: MAIN

15879   Certificate with serial 2 (0x2) revoked per CRL from issuer

/C=US/ST=Washington/L=Seattle/O=Credentia/OU=Certificate 

Services/CN=Credentia Root Certification Authority 1

15879 LOG: address_rewrite MAIN

15879   SSL CRL error: depth=0 error=certificate revoked 

cert=/C=US/ST=Washington/L=Seattle/O=Credentia/OU=Secure Mail 

Server/CN=giggler.foster.cc/emailAddress=root@foster.cc

15879 SSL info: SSLv3 read client certificate B

15879 SSL info: SSLv3 read client certificate B

15879 SSL info: SSLv3 read client certificate B

15879 LOG: MAIN

15879   TLS error on connection from giggler.foster.cc [216.254.62.183] (SSL_accept): 

error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned

15879 TLS failed to start

15879 LOG: smtp_connection MAIN

posted by delimiter @ 9:19:00 AM

0 Comments:

Post a Comment

Links to this post:

Create a Link

<< Home