fetchmail and openssl

Christopher Faylor cgf-use-the-mailinglist-please@cygwin.com
Wed Apr 25 20:51:00 GMT 2012

On Wed, Apr 25, 2012 at 11:40:50PM +0300, Vladimir Shatilo wrote:
>In the latest cygwin package fetchmail 6.3.18-1 has been compiled with
>old openssl 0.9.8 library.  This causes errors in ssl certificate
>validation when connecting to imap or pop3 with ssl.  The problem is
>openssl 1.0.0 and later has different hash generation algorithm then
>previous 0.9.8 version.  So after c_rehash symbolic links to valid
>certificates have different names then fetchmail is looking for.
>First I have verified it with strace and have got symbolic link names
>of certificates that fetchmail is looking for.  I created symbolic
>links with valid names (according to openssl 0.9.8 hashes) to existing
>certificates and fetchmail has worked well.
>Finally I have compiled fetchmail 6.3.21 from source with openssl
>1.0.1a-1 library and have got everything working as required.
>So this is required to update fetchmail to 6.3.21 and compile it with
>latest openssl 1.0.1a-1 library in the main cygwin package.

As you may have determined, since you've unsubscribed from this list,
cygwin-apps is not the correct place to report problems.  The main
Cygwin list is the proper place.


More information about the Cygwin-apps mailing list