Sylpheed and Gmail "unable to get local issuer certificate" solution
Frank Cox
theatre at sasktel.net
Mon Jul 23 05:20:36 UTC 2007
It has taken a bit of fiddling around to get Sylpheed to work with gmail
without getting errors surrounding the security certificates. Now that I have
it working I thought it worthwhile to post this as a kind of a how-to for anyone
else who may want to do this.
Recent versions of Sylpheed say "The SSL certificate of pop.gmail.com cannot be
verified by the following reason: unable to get local issuer certificate" when
you attempt to pick up and send mail through a gmail account. You can hit "OK"
to bypass this, but it is a nuisance to have to do that so this method will
allow Sylpheed to find the local issuer certificate that it's looking for and
stop giving the error.
You need c_rehash installed, it comes as part of the openssh-perl rpm so "yum
install openssh-perl" if you don't already have it.
There are two certificates required. You need the Equifax certificate for
receiving and the Thawte certificate for sending.
First, make a directory under ~/.sylpheed-2.0 called certs.
STEP 1: cd ~/.sylpheed-2.0/certs
STEP 2: wget -O Equifax_Secure_Certificate_Authority.pem \
https://www.geotrust.com/resources/root_certificates/certificates/Equifax_Secure_Certificate_Authority.cer
STEP 3: Download thawte-roots.zip from http://www.thawte.com/roots, unzip it
somewhere and copy ThawtePremiumServerCA_b64.txt from that archive into the
Sylpheed certs directory.
STEP 4: mv ThawtePremiumServerCA_b64.txt ThawtePremiumServerCA_b64.pem
STEP 5: c_rehash
That's all there is to it. Now Sylpheed will send and receive through gmail
without error.
--
MELVILLE THEATRE ~ Melville Sask ~ http://www.melvilletheatre.com
More information about the fedora-list
mailing list