On 10/24/10 00:07, Jamie Paul Griffin wrote:
I have had this working for ages and I do not have time to think about
it, but I have the equivalent of [email protected], not syscon780 or
[email protected]@pop.gmail.com. I also have sslcertck after ssl. I do
not know whether that would help.
From the info i've read, it definitely should be [email protected]. I might be
wrong but I don't think would alter the certificate verification error he's
getting.
I just posted on Gentoo forum and some posted that this configuration is
working for him:
defaults
protocol POP3
poll pop.gmail.com
user '[email protected]' there is me here
pass "secret"
keep
ssl
sslproto 'TLS1'
sslcertck
sslcertpath /etc/ssl/certs/
mda "/usr/bin/procmail -d %s"
I've tried to adopt the setting:
defaults
protocol POP3
poll pop.gmail.com
user '[email protected]'
pass "xxxx"
ssl
sslproto 'TLS1'
sslcertck
sslcertpath /etc/ssl/certs/
but it fails completely:
fetchmail: Server certificate verification error: unable to get local issuer
certificate
fetchmail: This means that the root signing certificate (issued for
/C=US/O=Google Inc/CN=Google Internet Authority) is not in the trusted CA
certificate
locations, or that c_rehash needs to be run on the certificate directory. For
details, please see the documentation of --sslcertpath and --sslcertfile in the
manual page.
7461:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify
failed:s3_clnt.c:982:
fetchmail: SSL connection failed.
fetchmail: socket error while fetching from [email protected]@pop.gmail.com
fetchmail: Query status=2 (SOCKET)
If I comment-out the last two lines:
sslcertck
sslcertpath /etc/ssl/certs/
it complains on certificate but I can fetch the mail.
Here's where the /etc/ssl/certs are from:
$ equery belongs /etc/ssl/certs/
[ Searching for file(s) /etc/ssl/certs in *... ]
dev-libs/openssl-1.0.0a-r3 (/etc/ssl/certs)
app-misc/ca-certificates-20090709 (/etc/ssl/certs)
--
Joseph
