[rt-users] rt-mailgate
Thomas Sibley
trs at bestpractical.com
Mon Jan 23 14:06:32 EST 2012
On 01/20/2012 02:38 PM, Robert Nesius wrote:
> I figured out a work around for this issue. I was suspicious that
> LWP::UserAgent could not reach the cert for the CA that signed the cert
> being presented by the web server. I learned there are some environment
> variables that I can leverage to influence where LWP::UserAgent looks
> even though it's being invoked down inside a program I don't want to
> touch. Adding my /etc/ssl/certs directory to the list of directories
> examined for certs solved the problem.
For what it's worth, the next release of RT will include a --ca-file
option you can use to specify the specific cert. It's equivalent to
setting PERL_LWP_SSL_CA_FILE.
> *root at linux:/opt/rt4/bin# *export PERL_LWP_SSL_CA_PATH=/etc/ssl/certs
If you'd like to submit a simple patch to rt-mailgate that also adds
support for --ca-path, I'm sure we'd apply it.
I do wonder why the OpenSSL library underlying the Perl library isn't
finding your cert in /etc/ssl/certs like I'd expect it to.
Thomas
More information about the rt-users
mailing list