Sujet : Re: error initializing TLS
De : rayban (at) *nospam* raybanana.net (Ray Banana)
Groupes : news.software.nntpDate : 18. Apr 2025, 09:34:34
Autres entêtes
Organisation : A noiseless patient spider
Message-ID : <8my0vxzx45.fsf@raybanana.net>
References : 1
User-Agent : Plonkenlights
Thus spake Gabx <
null@tcpreset.invalid>
Hi,
despite disabling TLS and commenting all the entries regarding it, I
still see errors like this:
Apr 17 09:44:40 news nnrpd[2355543]: error initializing TLS: [CA_file:
] [CA_path: /etc/news] [cert_file: /etc/news/cert.pem] [key_file:
/etc/news/key.pem]
Running INN2.6.4
Your server advertises the STARTTLS command:
____________________________________________________
/
| Report problems to <
usenet@news.tcpreset.net>.
| .
| capabilities
| 101 Capability list:
| VERSION 2
| IMPLEMENTATION INN 2.6.4
| AUTHINFO SASL
| COMPRESS DEFLATE
| HDR
| LIST ACTIVE ACTIVE.TIMES COUNTS DISTRIB.PATS DISTRIBUTIONS HEADERS MODERATORS MOTD NEWSGROUPS OVERVIEW.FMT SUBSCRIPTIONS
| OVER
| POST
| READER
| SASL SCRAM-SHA-1 SCRAM-SHA-256 DIGEST-MD5 NTLM CRAM-MD5
| STARTTLS
| XPAT
\______________________________________________________
Hence, newsreader clients can request SSL encrypted connections
on port 119 by issuing the STARTTLS command, which will fail as
SSL is not configured on your server.
_______________________________________________________________________
/
| news.tcpreset.net InterNetNews NNRP server INN 2.6.4 ready (posting ok)
| Sending STARTTLS command
| Error initializing TLS
\_______________________________________________________________________
The only way to prevent clients from using STARTTLS would be to
compile INN with STARTTLS disabled.
PS: The same applies to AUTHINFO SASL, but you don't offer
authenticated access to your server, anyway.
-- Пу́тін — хуйло́https://www.eternal-september.org
error initializing TLS
Re: error initializing TLS