[fetchmail]Server CommonName mismatch
Matthias Andree
ma@dt.e-technik.uni-dortmund.de
Fri, 10 Dec 2004 11:05:51 +0100
Payal Rathod <payal-fetchmail@scriptkitchen.com> writes:
> Hi,
> I am trying my friend's VPN and mailserver.
> I have a simple fetchmail script like
> poll example.com with proto pop3
> user payal with password xxx is payal here
>
> But when I run fetchmail, I get,
> fetchmail: Server CommonName: localhost
> fetchmail: Server CommonName mismatch: localhost <ip address>
> fetchmail: Warning: server certificate verification: self signed
> certificate
Your friend's mailserver has a bogus certificate.
Have him or her fix that; and you'll also need to install his or her
"root certificate" (that (s)he use used to sign the server certificate)
into your SSL certificate directory.
> Afterwards the mails do get downloaded but I am a bit worried that
> this might take some time and bandwidth on my slow line.
The errors don't slow things down.
> Well, does it? And if yes how can I avoid certificate checking?
You cannot. If you don't want certificates checked, don't use SSL.
> The remote server is qmail.
Well, qmail-pop3d breaks the size information upstream, so expect heaps
of size mismatch warnings.
--
Matthias Andree