I have just installed Cyrus IMAP 2.0.13 on Sparc Solaris 7. I'm trying to make an IMAP connection with TLS using Mac Eudora 5.1. If I use the "alternate port (993)" setting, I can get a connection. If I try to use STARTTLS (which both Cyrus and Eudora 5.1 claim to support) I get a STARTTLS failure. Any ideas? I have some debug output (I set the debugging level to 5 in tls.c). Here it is with "imaps" (port 993): May 1 10:48:50 emaildev master[16761]: about to exec /usr/local/cyrus/bin/imapd May 1 10:48:50 emaildev service-imaps[16761]: executed May 1 10:48:50 emaildev imapd[16761]: accepted connection May 1 10:48:50 emaildev imapd[16761]: starting TLS engine May 1 10:48:50 emaildev imapd[16761]: TLS engine: cannot load CA data May 1 10:48:50 emaildev imapd[16761]: setting up TLS connection May 1 10:48:50 emaildev imapd[16761]: SSL_accept:before/accept initialization May 1 10:48:50 emaildev imapd[16761]: SSL_accept:SSLv3 read client hello A May 1 10:48:50 emaildev imapd[16761]: SSL_accept:SSLv3 write server hello A May 1 10:48:50 emaildev imapd[16761]: SSL_accept:SSLv3 write certificate A May 1 10:48:50 emaildev imapd[16761]: SSL_accept:SSLv3 write server done A May 1 10:48:50 emaildev imapd[16761]: SSL_accept:SSLv3 flush data May 1 10:48:51 emaildev imapd[16761]: SSL_accept:SSLv3 read client key exchange A May 1 10:48:51 emaildev imapd[16761]: SSL_accept:SSLv3 read finished A May 1 10:48:51 emaildev imapd[16761]: SSL_accept:SSLv3 write change cipher spec A May 1 10:48:51 emaildev imapd[16761]: SSL_accept:SSLv3 write finished A May 1 10:48:51 emaildev imapd[16761]: SSL_accept:SSLv3 flush data May 1 10:48:51 emaildev imapd[16761]: starttls: TLSv1 with cipher DES-CBC3-SHA (192/192 bits) no authentication ... Here it is connecting on port 143 and using STARTTLS: May 1 10:50:30 emaildev master[16775]: about to exec /usr/local/cyrus/bin/imapd May 1 10:50:30 emaildev service-imap[16775]: executed May 1 10:50:30 emaildev imapd[16775]: accepted connection May 1 10:50:30 emaildev imapd[16775]: starting TLS engine May 1 10:50:30 emaildev imapd[16775]: TLS engine: cannot load CA data May 1 10:50:30 emaildev imapd[16775]: setting up TLS connection May 1 10:50:30 emaildev imapd[16775]: SSL_accept:before/accept initialization May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 read client hello A May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 write server hello A May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 write certificate A May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 write certificate request A May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 write server done A May 1 10:50:30 emaildev imapd[16775]: SSL_accept:SSLv3 flush data May 1 10:50:30 emaildev imapd[16775]: SSL3 alert read:warning:no certificate May 1 10:50:30 emaildev imapd[16775]: SSL3 alert write:fatal:unexected_message May 1 10:50:30 emaildev imapd[16775]: SSL_accept:error in SSLv3 read client certificate B May 1 10:50:30 emaildev last message repeated 1 time May 1 10:50:30 emaildev imapd[16775]: STARTTLS failed: lmrmac2.ctd.ornl.gov[160.91.170.73] May 1 10:50:30 emaildev imapd[16775]: Connection reset by peer, closing connection May 1 10:50:30 emaildev master[5017]: process 16775 exited, status 0 -- ======================== Larry M. Rosenbaum [EMAIL PROTECTED] Bldg 4500-N, Room E-218 865 574-8155 phone PO Box 2008, MS 6271 865 241-4000 fax Oak Ridge, TN 37831-6271 Oak Ridge National Laboratory, Network Computing Services group
