Stunnel pop3 imap smtp errors

Hi there

can anyone help me with this errors?

2005.06.24 11:56:38 LOG3[742:3086956768]: Error reading certificate file: /etc/stunnel/mail.chiptecmm.com.pem

2005.06.24 11:56:38 LOG3[742:3086956768]: error stack: 140DC009 : error:140DC009:SSL routines:SSL_CTX_use_certificate_chain_fileEM lib

2005.06.24 11:56:38 LOG3[742:3086956768]: SSL_CTX_use_certificate_chain_file: 906D06C: error:0906D06CEM routinesEM_read_bio:no start line

My stunnel.conf stand for
---------------------------------------------
#stunnel conf

cert = /etc/stunnel/mail.chiptecmm.com.pem
pid = /var/run/stunnel/run/stunnel.pid
setuid = nobody
setgid = nobody

# workaround

options = DONT_INSERT_EMPTY_FRAGMENTS

#some debugging
debug = 3
output = /var/log/stunnel.org

# service level configuration

[pop3s]
accept = 81.92.198.224:995
connect = 110

[imaps]
accept = 81.92.198.224:993
connect = 143

[smtps]
accept = 81.92.198.224:465
connect = 25

---------------------------------------------

Any help is very welcomed

............................................................
If helps - i still getting this error
............................................................
[root@server01 ~]# /usr/sbin/stunnel -d 995 -p /usr/share/ssl/certs/stunnel.pem -r localhostop3
2005.06.24 14:45:23 LOG3[7147:3086956768]: -d: No such file or directory (2)

Syntax:
stunnel [filename] | -fd [n] | -help | -version | -sockets
filename - use specified config file instead of /etc/stunnel/stunnel.conf
-fd n - read the config file from specified file descriptor
-help - get config file help
-version - display version and defaults
-sockets - display default socket options
[root@server01 ~]#

Just a guess here, but by the looks of that error, I would say you have a chained certificate which requires more than just your certificate, you need the chained CA public certificate. If you concatenate the two, that should work.

As far as the error you get with executing stunnel, those arguments are not valid, the valid arguments to stunnel listed below. All configuration is done in the /etc/stunnel/stunnel.conf and related files.

chiptecmm.com said:

If helps - i still getting this error
............................................................
[root@server01 ~]# /usr/sbin/stunnel -d 995 -p /usr/share/ssl/certs/stunnel.pem -r localhostop3
2005.06.24 14:45:23 LOG3[7147:3086956768]: -d: No such file or directory (2)

Click to expand...

It's a pretty specific error.

Edit:
My original post here was in error; see Tom's post immediately below.

Jeff

Re: Re: Stunnel pop3 imap smtp errors

jlasman said:

It's a pretty specific error.

Either there's no such file as:

/usr/share/ssl/certs/stunnel.pem

or if there is, iit doesn't have the permissions you need. Since you're running stunnel as root, and root can read anything, my guess is the former.

Jeff

Click to expand...

Actually I think the -d error is from the -d 995 command that he gave.

Syntax:
stunnel [filename] | -fd [n] | -help | -version | -sockets

The first positional operad is a filename, -d is not a filename.

He does have a problem with the certificate, but it is unrelated to what he is seeing here.

You're right; I didn't spend enough time reading it.

Jeff