On 01.11.2014, Alexander Volovics wrote:
Is that so. I didn't know that. How are you supposed to get
the certificate then. Given that all the most used mail progs
(thunderbird, outlook, apple mail, evolution, etc) connect you
"automatically" the ISP's dont hand out certificates.
Check if the "cert.pem" symlink points to something like this:
[root@kiera tls]# pwd
/etc/pki/tls
[root@kiera tls]# ls -l
total 16
lrwxrwxrwx 1 root root 49 Nov 1 14:11 cert.pem ->
/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem
drwxr-xr-x. 2 root root 4096 Aug 8 15:02 certs
drwxr-xr-x. 2 root root 93 Jun 5 21:38 misc
-rw-r--r-- 1 root root 10923 Jun 5 15:07 openssl.cnf
drwxr-xr-x. 2 root root 26 Jun 5 21:18 private
And is this a recent change because about a year ago I tried
mutt from Homebrew on a Mac and it worked then and I was asked
to accept the certificate.
Yes, you're right, it should. Tried it some minutes ago.
Since I'm neither using a Fedora mutt nor a Fedora openssl, my setup
might not be transferable.
If the certificate is in place, maybe you could invoke openssl
directly, to see what causes the negotiation failure?