Im lost on how to bring in Certs from Network Solutions.. Im trying to get TLS running TRUSTED. My OS redhat..and one of the problems TLS is working from inside to out but anyone replying command unknown
STARTTLS=client, relay=mail.sterlingsavings.com., version=TLSv1/SSLv3, verify=FAIL, cipher=RC4-MD5, bits=128/128 They send me 4 files 1 AddTrustExternalCARoot.ca 2 UTNAddTrustServer_CA.crt 3 NetworkSolutions_CA.crt 4 (domain) ther.com How do I bring them into openssl Trying 127.0.0.1... Connected to localhost.localdomain (127.0.0.1). Escape character is '^]'. 220 smtp1.ther.com ESMTP Sendmail 8.13.1/8.13.1; Mon, 19 Mar 2007 10:24:59 -0400 EHLO localhosts 250-smtp1.ther.com Hello localhost.localdomain [127.0.0.1], pleased to meet you 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-8BITMIME 250-SIZE 250-DSN 250-ETRN 250-STARTTLS 250-DELIVERBY 250 HELP 500 5.5.1 Command unrecognized: "" quit 221 2.0.0 smtp1.ther.com closing connection Connection closed by foreign host. [EMAIL PROTECTED] demoCA]# [EMAIL PROTECTED] demoCA]# openssl s_client -starttls smtp -crlf -connect localhost:25 CONNECTED(00000003) depth=0 /C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com verify error:num=20:unable to get local issuer certificate verify return:1 depth=0 /C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com verify error:num=21:unable to verify the first certificate verify return:1 --- Certificate chain 0 s:/C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com i:/C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com --- Server certificate -----BEGIN CERTIFICATE----- MIICqTCCAhKgAwIBAgIBBDANBgkqhkiG9w0BAQUFADBcMQswCQYDVQQGEwJVUzEL MAkGA1UECBMCTlkxJzAlBgNVBAoTHlJlc2VydmUgTWFuYWdlbWVudCBDb3Jwb3Jh dGlvbjEXMBUGA1UEAxMOc210cDEudGhlci5jb20wHhcNMDcwMzE5MTIzNzA5WhcN MDgwMzE4MTIzNzA5WjBcMQswCQYDVQQGEwJVUzELMAkGA1UECBMCTlkxJzAlBgNV BAoTHlJlc2VydmUgTWFuYWdlbWVudCBDb3Jwb3JhdGlvbjEXMBUGA1UEAxMOc210 cDEudGhlci5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAK5jhTqz5Gxk WlXpJlfp3qIGBta+WC/G4MNX8u2ojdVAeGykB1RroXk3F+qanh112S8q+t/kOmRh nFjngSmsJkHVMQFsnV+wKBEknGEiKWMaXmWIHxX5QjcP2CjGSQ8cmfBn0Q8+3r7p zf15f41FfelbF+8Pp6nH0lRgHDR7OXm5AgMBAAGjezB5MAkGA1UdEwQCMAAwLAYJ YIZIAYb4QgENBB8WHU9wZW5TU0wgR2VuZXJhdGVkIENlcnRpZmljYXRlMB0GA1Ud DgQWBBSX4faZv63kcZzc+AOFzHmsnLVLxjAfBgNVHSMEGDAWgBSjEeft7jAJAiV4 WnNUnYkjPcKicjANBgkqhkiG9w0BAQUFAAOBgQAE/WOT5w1725CfYhpH7wUBW/rG xTkkj6U4rL+u3E8SeAv3ZyBOQu+/W/1J1ktDjXqdhll1JZ/yj1lRoyi0zmajQTAV iJbXO0oSVPz9D+FsBASDJz7lJ7Rux6ZTiTgDZH49F8t4ZPFQOURi+mZ8BnvJlOet k4++cPj060d5zXDvEQ== -----END CERTIFICATE----- subject=/C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com issuer=/C=US/ST=NY/O=Reserve Management Corporation/CN=smtp1.ther.com --- No client certificate CA names sent --- SSL handshake has read 1437 bytes and written 293 bytes --- New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 1024 bit Compression: NONE Expansion: NONE SSL-Session: Protocol : TLSv1 Cipher : DHE-RSA-AES256-SHA Session-ID: CE198BABBCF725B60DFCDA6BD6BC461B3ED6115E642770E3D48F6CD169428991 Session-ID-ctx: Master-Key: DE92517A773FDD8F4BC4EAD536574D4E6BC28F4D2EB3205722133549C161AAC7 65823CE25DA543EDA20B0528802297AC Key-Arg : None Start Time: 1174314381 Timeout : 300 (sec) Verify return code: 21 (unable to verify the first certificate) --- 250 HELP ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
