[Eisfair] fetchmail per SSL funktioniert nicht

Alex Busam sambu at gmx.de
Fr Dez 20 21:28:13 CET 2013 

Hi,

ich versuche gerade meine Mailkonten auf ssl umzustellen.

Fetchmail liefert:
fetchmail: Server certificate verification error: unable to get local 
issuer certificate 
         ▒
fetchmail: Broken certification chain at: /C=ZA/ST=Western Cape/L=Cape 
Town/O=Thawte Consulting cc/OU=Certification Services Division/CN=Thawte 
Premiu▒
fetchmail: This could mean that the server did not provide the 
intermediate CA's certificate(s), which is nothing fetchmail could do 
anything about.  ▒
fetchmail: This could mean that the root CA's signing certificate is not 
in the trusted CA certificate location, or that c_rehash needs to be run 
on t▒
fetchmail: OpenSSL reported: error:0200100D:system 
library:fopen:Permission denied 
                            ▒
fetchmail: OpenSSL reported: error:20074002:BIO 
routines:FILE_CTRL:system lib 
                               ▒
fetchmail: OpenSSL reported: error:0B06F002:x509 certificate 
routines:X509_load_cert_file:system lib 
                  ▒
fetchmail: OpenSSL reported: error:14090086:SSL 
routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed 
                               ▒
fetchmail: SSL connection failed. 
 
        ▒


Certs chain-details liefert:
*
| certificate: pop.1und1.de.pem (081f4bba)
| subject    : /C=DE/ST=Rhineland-Palatinate/L=Montabaur/O=1 und 1 
Internet AG/CN=pop.1und1.de
| issuer     : /C=US/O=Thawte, Inc./CN=Thawte SSL CA
|
+->| certificate: thawte_ssl_ca.pem (978601d0)
    | subject    : /C=US/O=Thawte, Inc./CN=Thawte SSL CA
    | issuer     : /C=US/O=thawte, Inc./OU=Certification Services 
Division/OU=(c) 2006 thawte, Inc. - For authorized use only/CN=thawte 
Primary Root CA
    |
    +->| certificate: thawte_primary_root_ca.pem (2e4eed3c)
       | subject    : /C=US/O=thawte, Inc./OU=Certification Services 
Division/OU=(c) 2006 thawte, Inc. - For authorized use only/CN=thawte 
Primary Root
       | issuer     : /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte 
Consulting cc/OU=Certification Services Division/CN=Thawte Premium 
Server CA/emailAddre
       |
       +->| certificate: thawte_premium_server_ca.pem (98ec67f0)
          | subject    : /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte 
Consulting cc/OU=Certification Services Division/CN=Thawte Premium 
Server CA/emailAd
          | issuer     : /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte 
Consulting cc/OU=Certification Services Division/CN=Thawte Premium 
Server CA/emailAd
          |
          +-> end of chain!



Habe alles jetzt schon 3x wiederholt und ich finde leider keinen Fehler.
Kann mir jemand weiterhelfen? Welches Zertifikat ist fehlerhaft?

Viele Grüße
Alex

---
Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus Schutz ist aktiv.
http://www.avast.com

Mehr Informationen über die Mailingliste Eisfair