Hi Kurt, > So from what I understand, the problem is really on the dovecot > side. What does dovecot's log show? > > Dovecot can configure DH, which seems to default to: > ssl_dh = </usr/share/dovecot/dh.pem > > That file should be fine, it's 4096 bit.
I generated 4096 bit dh_key: openssl dhparam -out /path/to/dh.pem 4096 then I modified a configuration file of dovecot as follows: ssl_dh=</path/to/dh.pem then I restarted dovecot. Now fetch mail works fine after I upgraded openssl 1.1.1b-1 . I thinkf if this 4096 bit key is critical for fetchmail to work fine under openssl 1.1.1b-1, it should be documented somewhere like NEWS.Denian of openssl etc. Thanks for your valuable advice. Best regards, 2019-3-18(Mon) -- ************************** Atsuhito Kohda atsuhito_k AT tokushima-u.ac.jp
