I setup a new DirectAdmin server running on Debian 7 x64. This is my 3rd with the same configuration.
I use CustomBuild 2 and in theory the servers are all the same (of course they are not exact).
On my newest server Exim reports an error when SENDING mail over a TLS connection. It does not occur on every TLS connection, only some. It will report the following:
2015-11-24 07:09:32 1a17jH-0005wb-FR Received TLS cert status response, itself unverifiable
The next lines in the log will show the message delivery is successful and that it uses TLS to send the message. I'm trying to figure out why it is giving this error.
When I do a Google search, the only real match shows it is a debug message being printed by Exim when the OCSP feature can't verify the stapled certificate that is received from the remote server.
Since email is still working, this is more of an irritation than anything else. None of my other servers do it.
In the exim.conf there is no mention of OCSP even being configured. I believe that Exim is using OpenSSL, in the OpenSSL config file I don't see any mention of OCSP either.
Any ideas how DirectAdmin has OCSP implemented in Exim? Can I shut it off with CustomBuild? There is really not much to go on about OCSP or how it is setup so I am hoping someone here has some insight.
Thanks,
Robert
I use CustomBuild 2 and in theory the servers are all the same (of course they are not exact).
On my newest server Exim reports an error when SENDING mail over a TLS connection. It does not occur on every TLS connection, only some. It will report the following:
2015-11-24 07:09:32 1a17jH-0005wb-FR Received TLS cert status response, itself unverifiable
The next lines in the log will show the message delivery is successful and that it uses TLS to send the message. I'm trying to figure out why it is giving this error.
When I do a Google search, the only real match shows it is a debug message being printed by Exim when the OCSP feature can't verify the stapled certificate that is received from the remote server.
Since email is still working, this is more of an irritation than anything else. None of my other servers do it.
In the exim.conf there is no mention of OCSP even being configured. I believe that Exim is using OpenSSL, in the OpenSSL config file I don't see any mention of OCSP either.
Any ideas how DirectAdmin has OCSP implemented in Exim? Can I shut it off with CustomBuild? There is really not much to go on about OCSP or how it is setup so I am hoping someone here has some insight.
Thanks,
Robert