fetchmail and openssl

Jason Tishler jason@tishler.net
Mon Apr 30 12:15:00 GMT 2012


On Wed, Apr 25, 2012 at 11:40:50PM +0300, Vladimir Shatilo wrote:
> In the latest cygwin package fetchmail 6.3.18-1 has been compiled with
> old openssl 0.9.8 library.  This causes errors in ssl certificate
> validation when connecting to imap or pop3 with ssl.  The problem is
> openssl 1.0.0 and later has different hash generation algorithm then
> previous 0.9.8 version.  So after c_rehash symbolic links to valid
> certificates have different names then fetchmail is looking for.
> First I have verified it with strace and have got symbolic link names
> of certificates that fetchmail is looking for.  I created symbolic
> links with valid names (according to openssl 0.9.8 hashes) to existing
> certificates and fetchmail has worked well.
> Finally I have compiled fetchmail 6.3.21 from source with openssl
> 1.0.1a-1 library and have got everything working as required.
> So this is required to update fetchmail to 6.3.21 and compile it with
> latest openssl 1.0.1a-1 library in the main cygwin package.

Thanks for the above, I will release an updated fetchmail as soon as I


More information about the Cygwin-apps mailing list