Bug#340008: Upgrading dovecot overwrites installed SSL keys
On Wed, Jun 07, 2006 at 11:59:47AM -0400, Jaldhar H. Vyas wrote: Hello, haven't heard back from either of you. If this isn't such a big deal I'll downgrade the severity again. In any case I've been told this bug doesn't qualify to be fixed in sarge. Okay, fair enough. As I understand this problem is is fixed in unstable so there isn't more to be done other than leave this bug open for reference (and tag sarge?). Sorry I didn't reply sooner. Cheers, Dominic. -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
On Wed, 7 Jun 2006, Andrew Maier wrote: Hi, Sorry for not replying. (Monday was a holiday in Geneva, so I was out). To be honest I cannot recall correctly. But I do know, that my certificate is called impad.pem (in /etc/ssl/certs) in dovecot.conf and that I have commented out the lines to /etc/ssl/private/dovecot.pem, so the file looks like this: Thanks, it does help. This problem was fixed in later versions of the dovecot package. Now I'll just wait to see if Dominic has anything to add and then downgrade the bug. -- Jaldhar H. Vyas [EMAIL PROTECTED] La Salle Debain - http://www.braincells.com/debian/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
On Fri, 2 Jun 2006, Jaldhar H. Vyas wrote: On Fri, 2 Jun 2006, Andrew Maier wrote: I think I worked around the problem by giving the ssl keys a different name from the self created ones and I think this worked. Do you remember if at the time, the self created one was named imapd.pem or dovecot.pem? Hello, haven't heard back from either of you. If this isn't such a big deal I'll downgrade the severity again. In any case I've been told this bug doesn't qualify to be fixed in sarge. -- Jaldhar H. Vyas [EMAIL PROTECTED] La Salle Debain - http://www.braincells.com/debian/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
Hello, Jaldhar H. Vyas wrote: On Mon, 29 May 2006, Dominic Hargreaves wrote: severity 340008 grave thanks I have increased the severity of this bug as overwriting the SSL key is data loss. This affects the recent security upgrade in sarge which makes it especially visible. I'd asked the original reporter about the circumstances in which this occurs but didn't get a reply. Actually now I don't even see that message in the bug report so he may never have received it. If so Andrew, sorry I've ignored this bug for so long. No worries, I cannot remember receiving any reply. I normally keep all my Debian bugs conversations in a mail folder. So I assume your mail got eaten by gremlins. Is this the same problem as in #337715? If so it has been dealt with in etch and sid but is still an issue in sarge. It is perhaps worth reissuing this erratum having fixed this problem. If there is interest in this I am happy to provide the fix. Yes please send me any information you have ASAP so we can deal with this promptly. There is another security issue which has to be dealt with (#369359) so the chances are very good a fix for this problem will be accepted for sarge. I think I worked around the problem by giving the ssl keys a different name from the self created ones and I think this worked. In any case I now get very cautious when upgrading dovecot. I currently use 1.0.beta8-2 and I things are working now. regards, Andrew -- Andrew Maier andrew at maier dot name -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
On Fri, 2 Jun 2006, Andrew Maier wrote: I think I worked around the problem by giving the ssl keys a different name from the self created ones and I think this worked. Do you remember if at the time, the self created one was named imapd.pem or dovecot.pem? -- Jaldhar H. Vyas [EMAIL PROTECTED] La Salle Debain - http://www.braincells.com/debian/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
On Mon, 29 May 2006, Dominic Hargreaves wrote: severity 340008 grave thanks I have increased the severity of this bug as overwriting the SSL key is data loss. This affects the recent security upgrade in sarge which makes it especially visible. I'd asked the original reporter about the circumstances in which this occurs but didn't get a reply. Actually now I don't even see that message in the bug report so he may never have received it. If so Andrew, sorry I've ignored this bug for so long. Is this the same problem as in #337715? If so it has been dealt with in etch and sid but is still an issue in sarge. It is perhaps worth reissuing this erratum having fixed this problem. If there is interest in this I am happy to provide the fix. Yes please send me any information you have ASAP so we can deal with this promptly. There is another security issue which has to be dealt with (#369359) so the chances are very good a fix for this problem will be accepted for sarge. -- Jaldhar H. Vyas [EMAIL PROTECTED] La Salle Debain - http://www.braincells.com/debian/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#340008: Upgrading dovecot overwrites installed SSL keys
severity 340008 grave thanks I have increased the severity of this bug as overwriting the SSL key is data loss. This affects the recent security upgrade in sarge which makes it especially visible. It is perhaps worth reissuing this erratum having fixed this problem. If there is interest in this I am happy to provide the fix. Cheers, Dominic. -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]