[BlueOnyx:26484] Re: Strange SSL error

[Colin Jack]

Thanks Michael,
 
>> This weekend we started getting complaints of SSL errors when using 
>> email clients – the email client apparently returning the cert for the 
>> host server rather than the vsite when using one of the aliases.

>This might be related to a YUM update that was published on Friday. 
>While working on a client server I noticed that he had non-working SNI 
>for several Vsites. The Vsites where it didn't work all had a single 
>FQDN which they responded to. And the Handler/Constructor that parse the 
>SSL certs to generate the SNI config files for Postfix and Dovecot so 
f>ar only parse the "DNS:" line in the certificates, but not the 
>"Subject:" line. So single FQDN certs resulted in a somewhat borked 
>email SNI configuration. The update from Friday fixes that.

I thought it must have been an update!

>To address your issue do the following:

>Run "yum clean all" and "yum update" to make sure you have all updates 
>installed. Then restart CCEd for good measure:

>/usr/sausalit/sbin/cced.init restart

>If that doesn't fix it, try to renew the SSL certificate for the Vsite 
>in question.

Have done that so will see how many complaints we get tomorrow! 

Kind regards

Colin