[stunnel-users] Using CA intyermediate on stunnel problem

Abdelkarim Mateos Sanchez ceo at islaserver.com
Tue Feb 8 11:01:46 CET 2011


Hi.

We are using RapidSSL certificate for my hosts.

We are using stunnel for ASSP (AntiSpam Proxy System)

We are trying use this certificate but get some errors. We are looking 
for solution but problem persist,

cert = /etc/stunnel/cpanel.pem
chroot = /usr/local/cpanel/var/run/stunnel-assp/
pid = /stunnel.pid
setuid = stunnel
setgid = stunnel
output = /var/log/stunnel.log
[ssmtp]
accept = 465
connect = 127.0.0.2:26
#CAfile = /etc/stunnel/cpanel.cabundle
#CApath = /etc/stunnel/rapidssl/

When try connect get this error

depth=0 
/serialNumber=cso/HwRW/nTj87jIivvttDvfpI7rUt2c/C=ES/O=genesis.islaserver.com/OU=GT15685418/OU=See 
www.rapidssl.com/resources/cps (c)11/OU=Domain Control Validated - 
RapidSSL(R)/CN=genesis.islaserver.com
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 
/serialNumber=cso/HwRW/nTj87jIivvttDvfpI7rUt2c/C=ES/O=genesis.islaserver.com/OU=GT15685418/OU=See 
www.rapidssl.com/resources/cps (c)11/OU=Domain Control Validated - 
RapidSSL(R)/CN=genesis.islaserver.com
verify error:num=27:certificate not trusted
verify return:1
depth=0 
/serialNumber=cso/HwRW/nTj87jIivvttDvfpI7rUt2c/C=ES/O=genesis.islaserver.com/OU=GT15685418/OU=See 
www.rapidssl.com/resources/cps (c)11/OU=Domain Control Validated - 
RapidSSL(R)/CN=genesis.islaserver.com
verify error:num=21:unable to verify the first certificate
verify return:1



Of /etc/stunnel/cpanel.pem there're

KEY and CERT for host
CA intermediate certificate for RapidSSL

I'm lost.


Apreciate help.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ceo.vcf
Type: text/x-vcard
Size: 368 bytes
Desc: not available
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20110208/50e783db/attachment.vcf>


More information about the stunnel-users mailing list