I had regenerate my cert, but this is shown in my mail.log, is these
normal? please advice<br /><br />Thank you<br /><br
/>---------------------------------------------------------------------------------------------<br
/><br />Oct 7 18:53:13 mail postfix/smtpd[4081]: setting up TLS
connection from unknown[202.75.42.117]<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:before/accept initialization<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (11 bytes => -1 (0xFFFFFFFF))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv2/v3 read client hello A<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (11 bytes => 11 (0xB))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: 0000 80 8c 01 03 01 00
63
......c<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: 0007 -
<SPACES/NULLS><br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F8B] (131 bytes => -1 (0xFFFFFFFF))<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in
SSLv2/v3 read client hello B<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F8B] (131 bytes => 131
(0x83))<br
/>...
.b.<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3
read client hello A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 write server hello A<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 write certificate A<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 write key exchange
A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3
write server done A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
write to 080A3310 [080C30F0] (1944 bytes => 1944 (0x798))<br
/>...
.....<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: 0795 -
<SPACES/NULLS><br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 flush data<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F80] (5 bytes => -1
(0xFFFFFFFF))<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:error in SSLv3 read client certificate A<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read client
certificate A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read
from 080A3310 [080B4F80] (5 bytes => 5 (0x5))<br />Oct 7 18:53:13
mail postfix/smtpd[4081]: 0000 16 03 01 00
86
.....<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (134 bytes => -1 (0xFFFFFFFF))<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read client
certificate A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read
from 080A3310 [080B4F85] (134 bytes => 134 (0x86))<br />...<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 read
client key exchange A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F80] (5 bytes => -1 (0xFFFFFFFF))<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3
read certificate verify A<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F80] (5 bytes => 5
(0x5))<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: 0000 14 03 01
00
01
.....<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (1 bytes => -1 (0xFFFFFFFF))<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read
certificate verify A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F85] (1 bytes => 1 (0x1))<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: 0000
01
.<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => -1 (0xFFFFFFFF))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv3 read certificate verify
A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F85] (1 bytes => 1 (0x1))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: 0000
01
.<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => -1 (0xFFFFFFFF))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv3 read certificate verify
A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => 5 (0x5))<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: 0000 16 03 01 00
30
....0<br />Oct 7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (48 bytes => -1 (0xFFFFFFFF))<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read
certificate verify A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F85] (48 bytes => 48 (0x30))<br />...<br
/>Oct 7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 read
finished A<br />Oct 7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 write change cipher spec A<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 write finished A<br />Oct 7
18:53:13 mail postfix/smtpd[4081]: write to 080A3310 [080C30F0] (59 bytes
=> 59 (0x3B))<br />...<br />Oct 7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 flush data<br />Oct 7 18:53:13
mail postfix/smtpd[4081]: TLS connection established from
unknown[202.75.42.117]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256
bits)<br /><br
/>---------------------------------------------------------------------------------------------<br
/>> severity 390415 important <br />> tags 390415 - l10n <br />>
tags 390415 + moreinfo <br />> thanks <br />> <br />> On Sun, Oct
01, 2006 at 03:00:41PM +0800, System Administrator wrote: <br />>>
Package: openssl <br />>> Version: 0.9.8c-2 <br />>> Severity:
critical <br />>> Tags: l10n <br />>> Justification: breaks
unrelated software <br />> <br />> I don't see how it breaks
unrelated, since it's clearly making use of <br />> the openssl
library. Grave or serious should be more than enough if it <br />>
really breaks something. <br />> <br />>> Oct 1 14:57:27 mail
postfix/smtpd[23458]: initializing the server-side <br />>> TLS
engine <br />>> Oct 1 14:57:27 mail postfix/smtpd[23458]: warning:
cannot get private <br />>> key from file /etc/postfix/ssl/req.pem
<br />> <br />> req.pem looks alot like an certificate request. I
can only hope it <br />> doesn't contain your private key. <br />>
<br />> Did this work with other versions or something? <br />> <br
/>> Your bug report doesn't contain much info, and I can only assume
you've <br />> set things up wrong. So I'm lowering the severity since
I don't believe <br />> this to be a bug in the software. <br />>
<br />> What did you to create your certificate? I suggest you read the
<br />> documentation on how to create it. <br />> <br />> <br
/>> Kurt <br />> <br />> <br />