Bug 341267

Summary: courier-imap-ssl configuration problems
Product: [openSUSE] openSUSE 10.3 Reporter: Freek de Kruijf <freek>
Component: OtherAssignee: Michael Skibbe <mskibbe>
Status: RESOLVED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Major    
Priority: P5 - None CC: hvogel, novellbugs
Version: Final   
Target Milestone: ---   
Hardware: 64bit   
OS: Other   
Whiteboard:
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Freek de Kruijf 2007-11-13 11:02:04 UTC 
In the files /etc/courier/imapd-ssl and imapd-ssl-dist the line TLS_CERTFILE=@sysconfig@/courier-imap/imapd.pem is present. Apparently @sysconfig@ has not been replaced by some meta value.
The same is true for the pop3d-ssl files.
This @sysconfig@ is also present, several times, in the file mkimapdcert and mkpop3dcert in /usr/share/courier-imap/
In openSUSE 10.2 this @sysconfig@ has the value /usr/share
There is still another problem in these 2 mk...cert files.
/usr/local/sbin/openssl is used to run the openssl command.
However this should have been /usr/bin/openssl

At the beginning of /usr/share/mkimapdcert and mkpop3dcert there is a test for the availability of openssl. If it is not available, however in the current version the test is wrong, there is no error message, although the return code is 0.
Apparently in /etc/init.d/courier-imap-ssl and courier-pop-ssl these mk...cert are called, however the return status is not checked so the daemons are started anyway.
Comment 1 Michael Skibbe 2007-11-15 10:11:09 UTC 
i take a look on that problem - seems that they changed the variable names from @sysconfig@ to @sysconfdir@
Comment 2 Michael Skibbe 2007-11-16 11:47:26 UTC 
the path to openssl is courier default - i changed this and checked in wfixed package.

i also include a check in /etc/init.d/courier-*-ssl

package checked in => fixed
Comment 3 Christian Boltz 2008-01-01 20:25:35 UTC 
*** Bug 351060 has been marked as a duplicate of this bug. ***
Comment 4 who cares 2008-12-04 10:45:53 UTC 
Hi,

for some reason the fix never made it to the update servers. I've just installed courier-imap and courier-authlib, and the config files are broken as described above. The only relevant update shown by 'you' is for courier-authlib.

Thanks,
Peter
Comment 5 who cares 2008-12-04 10:47:19 UTC 
Btw, I'm using the i586 version, not x86_64.
Comment 6 Hendrik Vogelsang 2008-12-04 10:55:19 UTC 
there never was a update for this. This was a Factory fix and is included since 11.0