Je reçois régulièrement le mail ci-dessous de 2 de mes serveurs.
Déjà sous SME7.1.3 j'avais l'erreur ci-dessous, qui perdure après la mise à jour en 7.2
Comment régler ce problème svp ?
Merci.
/etc/cron.daily/conf-mod_ssl:
ERROR in /etc/e-smith/templates//home/e-smith/ssl.crt: Program fragment delivered error <<ERROR: Date::Manip unable to determine TimeZone.
at /usr/lib/perl5/vendor_perl/5.8.5/Date/Manip.pm line 3495
Date::Manip::Date_TimeZone called at /usr/lib/perl5/vendor_perl/5.8.5/Date/Manip.pm line 661
Date::Manip::Date_Init() called at /usr/lib/perl5/vendor_perl/5.8.5/Date/Manip.pm line 1395
Date::Manip::ParseDate('Aug 2 22:35:07 GMT 2008\x{a}') called at /etc/e-smith/templates//home/e-smith/ssl.crt line 22
eval 'package esmith::__TEMPLATE__::3; ;
#line 1 /etc/e-smith/templates//home/e-smith/ssl.crt
use constant KEYLIFEINDAYS => 365;
use Date::Manip;
use Cwd;
my $here = getcwd;
my $FQDN = "$SystemName.$DomainName";
my $commonName = $modSSL{CommonName} || $FQDN;
my $crt = "/home/e-smith/ssl.crt/$FQDN.crt";
my $key = "/home/e-smith/ssl.key/$FQDN.key";
my $defaultCity = $ldap{defaultCity};
my $defaultCompany = $ldap{defaultCompany};
my $defaultDepartment = $ldap{defaultDepartment};
my $email = "admin\\@$DomainName";
if ( -f $crt )
{
my $expire = `openssl x509 -enddate -noout -in $crt`;
$expire =~ s/^notAfter=//;
$expire =~ s#(\\d{4}) (\\w{3})#$2 $1#;
if ( Date_Cmp(\'today\', ParseDate($expire)) < 0 ) {
my $expected_issuer = \'/C=--\' .
\'/ST=----\';
$expected_issuer .= \'/L=\' . ($defaultCity ? $defaultCity : \'Newbury\');
$expected_issuer .= \'/O=\' . ($defaultCompany ? $defaultCompany : \'My Company Ltd\');
$expected_issuer .= "/OU=$defaultDepartment" if $defaultDepartment;
$expected_issuer .= "/CN=$commonName" .
"/emailAddress=$email";
my $issuer = `openssl x509 -issuer -noout -in $crt`;
chomp $issuer;
$issuer =~ s/^issuer= //;
if ($issuer eq $expected_issuer)
{
# Old key file is still good. Read it out - processTemplate will work
# out that it hasn\'t changed, and leave the old one in place
open(C, "$crt") or die "Couldn\'t open crt file: $!";
my @crt = <C>;
chomp @crt;
$OUT = join "\\n", @crt;
close(C);
return;
}
}
}
# go to somewhere private and safe where we can run programs
# as root
unless (-e "/tmp/ssl")
{
mkdir "/tmp/ssl", 0700;
}
chdir "/tmp/ssl" or die "Couldn\'t change to secure directory: $!";
$SIG{ALRM} = sub { die "whoops, $program pipe broke" };
unless (open(SSL,"-|"))
{
my $pid = open(RSACERT, "|-");
if ($pid)
{
# parent
# anonymous sub to crop a variable to a specified size
my $cropLeft = sub {
my ($var, $len) = @_;
if (length($var) > $len)
{
$var = substr($var, 0, $len);
}
return $var;
};
# crop fields that are too long for X509:
$defaultCity = &$cropLeft($defaultCity, 128);
$defaultCompany = &$cropLeft($defaultCompany, 64);
$defaultDepartment = &$cropLeft($defaultDepartment, 64);
$email = &$cropLeft($email, 40);
$commonName = &$cropLeft($commonName, 64);
foreach (
"--",
"----",
"$defaultCity",
"$defaultCompany",
"$defaultDepartment",
"$commonName",
"$email"
)
{
print RSACERT "$_\\n";
}
close(RSACERT) || die "RSACERT kid exited $?";
exit (0);
}
else
{
# child
exec("/usr/bin/openssl",
qw(req -new -key),
$key,
qw(-x509 -days), KEYLIFEINDAYS,
qw(-set_serial), time(),
)
|| die "can\'t exec program: $!";
# NOTREACHED
}
}
while (<SSL>)
{
$OUT .= $_;
}
close(SSL) or die "Closing openssl pipe reported: $!";
chdir $here;
;' called at /usr/lib/perl5/vendor_perl/5.8.5/Text/Template.pm line 319
Text::Template::fill_in('Text::Template=HASH(0x94da41c)', 'HASH', 'ARRAY(0x94cf86c)', 'PACKAGE', 'esmith::__TEMPLATE__::3', 'BROKEN', 'CODE(0x94d9490)', 'UNTAINT', 1, ...) called at /usr/lib/perl5/vendor_perl/5.8.5/Text/Template.pm line 382
Text::Template::fill_in_file('/etc/e-smith/templates//home/e-smith/ssl.crt', 'HASH', 'ARRAY(0x94cf86c)', 'PACKAGE', 'esmith::__TEMPLATE__::3', 'BROKEN', 'CODE(0x94d9490)', 'UNTAINT', 1, ...) called at /usr/lib/perl5/site_perl/esmith/templates.pm line 556
esmith::templates::processTemplate('HASH(0x94d79bc)') called at /etc/e-smith/templates//home/e-smith/ssl.pem/40crt line 10
eval 'package esmith::__TEMPLATE__::1; ;
#line 1 /etc/e-smith/templates//home/e-smith/ssl.pem/40crt
my $domain = $DomainName || "localdomain";
my $hostname = $SystemName || "localhost";
my $crt = $modSSL{\'crt\'};
unless ($crt)
{
$crt = "/home/e-smith/ssl.crt/$hostname.$domain.crt";
use esmith::templates;
esmith::templates::processTemplate({
TEMPLATE_PATH => "/home/e-smith/ssl.crt/crt",
OUTPUT_FILENAME => $crt,
});
}
open(CRT, $crt) or die "Could not open crt file: $!";
my @crt = <CRT>;
chomp @crt;
$OUT = join "\\n", @crt;
close CRT;
;' called at /usr/lib/perl5/vendor_perl/5.8.5/Text/Template.pm line 319
Text::Template::fill_in('Text::Template=HASH(0x94bf234)', 'HASH', 'ARRAY(0x937faa0)', 'PACKAGE', 'esmith::__TEMPLATE__::1', 'BROKEN', 'CODE(0x93fdbf4)', 'UNTAINT', 1, ...) called at /usr/lib/perl5/vendor_perl/5.8.5/Text/Template.pm line 382
Text::Template::fill_in_file('/etc/e-smith/templates//home/e-smith/ssl.pem/40crt', 'HASH', 'ARRAY(0x937faa0)', 'PACKAGE', 'esmith::__TEMPLATE__::1', 'BROKEN', 'CODE(0x93fdbf4)', 'UNTAINT', 1, ...) called at /usr/lib/perl5/site_perl/esmith/templates.pm line 556
esmith::templates::processTemplate('HASH(0x91e6b2c)') called at /sbin/e-smith/expand-template line 45>> at template line 1
WARNING in /etc/e-smith/templates//home/e-smith/ssl.pem/40crt: ERROR: Template processing failed for //home/e-smith/ssl.crt/serveur-linux.agfvie.nc.crt: 1 fragment generated errors
at /etc/e-smith/templates//home/e-smith/ssl.pem/40crt line 10
WARNING: Template processing succeeded for //home/e-smith/ssl.pem/serveur-linux.agfvie.nc.pem: 1 fragment generated warnings
at /sbin/e-smith/expand-template line 45
/etc/cron.daily/sa_update:
error: GPG validation failed!
The update downloaded successfully, but it was not signed with a trusted GPG
key. Instead, it was signed with the following keys:
24F434CE
Perhaps you need to import the channel's GPG key? For example:
wget http://spamassassin.apache.org/updates/GPG.KEY
sa-update --import GPG.KEY
channel: GPG validation failed, channel failed
