<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN">
<html><body style='font-size: 10pt; font-family: Verdana,Geneva,sans-serif'>
<p>On 2014-02-04 22:53, pj@websavages.com wrote:</p>
<blockquote type="cite" style="padding-left:5px; border-left:#1010ff 2px solid; margin-left:5px"><!-- html ignored --><!-- head ignored --><!-- meta ignored -->
<pre>Having ssl_verify_host set to true or false makes no difference.
Cheers PJ</pre>
<blockquote type="cite" style="padding-left:5px; border-left:#1010ff 2px solid; margin-left:5px">On 4 Feb 2014, at 22:01, Daniel Hoffend <<a href="mailto:dh@dotlan.net">dh@dotlan.net</a>> wrote: the gist was my first version: there's an updated, much larger ssl howto now integrated into kolab-docs <a href="http://docs.kolab.org/howtos/secure-kolab-server.html">http://docs.kolab.org/howtos/secure-kolab-server.html</a> btw, i personally haven't enabled ssl_verify_host for the server internal kolab_wap calls. greetings Daniel ------ Originalnachricht ------ Von: "Velzeboer, PJ" <<a href="mailto:pj@websavages.com">pj@websavages.com</a>> An: "Kolab Mailing List" <<a href="mailto:users@lists.kolab.org">users@lists.kolab.org</a>> Gesendet: 04.02.2014 22:57:27 Betreff: Kolab-webadmin login failure with startssl cert
<blockquote type="cite" style="padding-left:5px; border-left:#1010ff 2px solid; margin-left:5px">Hi all, I've refreshed the certificates on my CentOS 6 Kolab 3.1 install using certs from startssl. I loosely followed <a href="https://gist.github.com/dhoffend/7008915">https://gist.github.com/dhoffend/7008915</a> to make sure the key components were using the new certificates. The only snag is that I am no longer able to login to kola-webadmin. Below is what /var/log/kolab-webadmin/errors says PHP Error: Login failed. Unable to connect to ssl://ssl.websavages.com:443. Error: stream_socket_client(): unable to connect to ssl://ssl.websavages.com:443 (Unknown error) (POST) Below is the stanza from /etc/kolab/kolab.conf [kolab_wap] ssl_verify_host = true sql_uri = mysql://kolab:<a href="mailto:xxxxxxxxxxxxxxxxx@localhost">xxxxxxxxxxxxxxxxx@localhost</a>/kolab ssl_verify_peer = true skin = default api_url = <a href="https://ssl.websavages.com/kolab-webadmin/api">https://ssl.websavages.com/kolab-webadmin/api</a> Anyone any ideas?</blockquote>
</blockquote>
<pre>_______________________________________________
users mailing list
<a href="mailto:users@lists.kolab.org">users@lists.kolab.org</a>
<a href="https://lists.kolab.org/mailman/listinfo/users">https://lists.kolab.org/mailman/listinfo/users</a>
</pre>
</blockquote>
<p>So the latest on this little saga is that if you force the http_request2 component to use the cURL adapter it works (although it needs to hit a timeout somewhere before it displays the content!)</p>
<p>No one else run into this problem?</p>
<p>No one else running kolab with a cert from startssl?</p>
<p>Cheers PJ</p>
<div> </div>
</body></html>