November 2019

S M T W T F S
      12
34 5 678 9
10111213141516
17181920212223
24252627282930

Navigation

Style Credit

Expand Cut Tags

No cut tags

[identity profile] dmarck.livejournal.com
Tuesday, February 26th, 2008 04:47 pm (UTC)
А это тебе openssl сам пишет:

marck@woozle:~> openssl s_client -connect smtp.yandex.ru:25 -starttls smtp
CONNECTED(00000003)
depth=0 /C=RU/2.5.4.17=111033/ST=Russian Federation/L=Moscow/2.5.4.9=MOSCOW/2.5.4.9=Samokatnaya 1 bldg 21/O=OOO Yandex/OU=NOC/OU=EliteSSL/CN=smtp.yandex.ru
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 /C=RU/2.5.4.17=111033/ST=Russian Federation/L=Moscow/2.5.4.9=MOSCOW/2.5.4.9=Samokatnaya 1 bldg 21/O=OOO Yandex/OU=NOC/OU=EliteSSL/CN=smtp.yandex.ru
verify error:num=27:certificate not trusted
verify return:1
depth=0 /C=RU/2.5.4.17=111033/ST=Russian Federation/L=Moscow/2.5.4.9=MOSCOW/2.5.4.9=Samokatnaya 1 bldg 21/O=OOO Yandex/OU=NOC/OU=EliteSSL/CN=smtp.yandex.ru
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
 0 s:/C=RU/2.5.4.17=111033/ST=Russian Federation/L=Moscow/2.5.4.9=MOSCOW/2.5.4.9=Samokatnaya 1 bldg 21/O=OOO Yandex/OU=NOC/OU=EliteSSL/CN=smtp.yandex.ru
   i:/C=GB/O=Comodo Limited/OU=Comodo Trust Network/OU=Terms and Conditions of use: http://www.comodo.net/repository/OU=(c)2002 Comodo Limited/CN=Comodo Class 3 Security Services CA


Я к тому, что цепочки проверять надо разрешать отдельно.

Reply

This account has disabled anonymous posting.
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting
 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.