Control: notfound -1 3.26.0+dfsg-1
Control: reassign -1 xrdp
Control: found -1 0.10.6-1
Control: affects -1 freerdp3

On Thu, 2026-07-09 at 21:34 +0300, Michael Tokarev wrote:
> The problem here is, on the xrrdp side:
> 
> [2026-07-09T21:01:39.699+0300] [INFO ] Client requested security types (RDP 
> assumed) : SSL
> [2026-07-09T21:01:39.700+0300] [WARN ] Cannot accept TLS connections because 
> certificate or private key file is not readable. certificate file: 
> [/etc/xrdp/cert.pem], private key file: [/etc/xrdp/key.pem]
> 
> 
> By default, xrdp installs /etc/xrdp/key.pem as a symlink to
> /etc/ssl/private/ssl-cert-snakeoil.key.  But this file is
> unreadable by the user xrdp running as (xrdp:xrdp).  So
> xrdp can't read its tls key, and fails.
> 
> It fails not just with freerdp testsuite. It fails *all* the
> time, for any tls connection, by default.

Thanks for your analysis. Reassigning this bug accordingly.

Sven

-- 
GPG Fingerprint
3DF5 E8AA 43FC 9FDF D086 F195 ADF5 0EDA F8AD D585

Attachment: signature.asc
Description: This is a digitally signed message part

Reply via email to