fetchmail and openssl
Jason Tishler
jason@tishler.net
Mon Apr 30 12:15:00 GMT 2012
Vladimir,
On Wed, Apr 25, 2012 at 11:40:50PM +0300, Vladimir Shatilo wrote:
> In the latest cygwin package fetchmail 6.3.18-1 has been compiled with
> old openssl 0.9.8 library. This causes errors in ssl certificate
> validation when connecting to imap or pop3 with ssl. The problem is
> openssl 1.0.0 and later has different hash generation algorithm then
> previous 0.9.8 version. So after c_rehash symbolic links to valid
> certificates have different names then fetchmail is looking for.
>
> First I have verified it with strace and have got symbolic link names
> of certificates that fetchmail is looking for. I created symbolic
> links with valid names (according to openssl 0.9.8 hashes) to existing
> certificates and fetchmail has worked well.
>
> Finally I have compiled fetchmail 6.3.21 from source with openssl
> 1.0.1a-1 library and have got everything working as required.
>
> So this is required to update fetchmail to 6.3.21 and compile it with
> latest openssl 1.0.1a-1 library in the main cygwin package.
Thanks for the above, I will release an updated fetchmail as soon as I
can.
Jason
More information about the Cygwin-apps
mailing list