chirs charter wrote:
>
> Looks like an error in the opening dialogue?
>
> catfish# openssl s_client -connect localhost:993
> CONNECTED(00000003)
> 1855:error:140770FC:SSL
> routines:SSL23_GET_SERVER_HELLO:unknown
> protocol:s23_cln
> t.c:460:
>
> What do you think?
> Thanks
Don't know. This is beyond my knowledge of SSL/TLS. All I know is that
I follow install-configure.html to the letter and everything always
works right out of the box. I'd throw out whatever HOWTO you used and
use the included documentation.
Ken
>
> --- Ken Murchison <[EMAIL PROTECTED]> wrote:
> >
> >
> > chirs charter wrote:
> > >
> > > Ken,
> > > Makes total sense thanks. Here is the putput using
> > the
> > > s_client to opensl:
> > >
> > > catfish# openssl s_client -connect localhost:993
> > -cert
> > > /var/imap/cert.pem
> > > unable to get certificate from
> > '/var/imap/cert.pem'
> > > 1853:error:0906D06C:PEM routines:PEM_read_bio:no
> > start
> > > line:pem_lib.c:662:Expect
> > > ing: CERTIFICATE
> > > 1853:error:140AD009:SSL
> > > routines:SSL_CTX_use_certificate_file:missing asn1
> > > eos:s
> > > sl_rsa.c:534:
> > >
> > > More to go on but I have not had any luck finding
> > out
> > > more on this error messages. Any ideas?
> > > Thanks again.
> >
> > Try it without -cert. See if it works without a
> > client cert first (baby
> > steps).
> >
> > >
> > > --- Ken Murchison <[EMAIL PROTECTED]> wrote:
> > > >
> > > >
> > > > chirs charter wrote:
> > > > >
> > > > > HEllo,
> > > > > I uncomented the imaps entry in
> > /etc/cyrus.conf.
> > > > Now
> > > > > if I telnet to localhost on port 993 I am
> > prompted
> > > > to
> > > > > enter a PEM pass phrase. Somethings seems
> > > > > misconfiugred no? If I enter the PEM
> > passphrase
> > > > for
> > > > > the server's cert it fails. I know something
> > is
> > > > wrong
> > > > > here I am just unsure what. If you could give
> > me
> > > > some
> > > > > feedback I would greatly appreciate it.
> > Thanks.
> > > > Here
> > > > > is the transcript:
> > > > >
> > > > > Ccatfish# telnet localhost 993
> > > > > Trying 127.0.0.1...
> > > > > Connected to localhost.
> > > > > Escape character is '^]'.
> > > > > Enter PEM pass phrase:XXXXXX
> > > > >
> > > > > * BYE Fatal error: tls_init() failed
> > > > > Connection closed by foreign host.
> > > > >
> > > > > Confused.
> > > >
> > > > Whether or not you have a passphrase, you can't
> > > > telnet to a SSL wrapped
> > > > service port and expect to see anything. You
> > have
> > > > to use something like
> > > > 'openssl s_client -connect localhost:993'
> > > >
> > > > Ken
> > > > --
> > > > Kenneth Murchison Oceana Matrix Ltd.
> > > > Software Engineer 21 Princeton Place
> > > > 716-662-8973 x26 Orchard Park, NY 14127
> > > > --PGP Public Key--
> > > http://www.oceana.com/~ken/ksm.pgp
> > >
> > > __________________________________________________
> > > Do You Yahoo!?
> > > Make international calls for as low as $.04/minute
> > with Yahoo! Messenger
> > > http://phonecard.yahoo.com/
> >
> > --
> > Kenneth Murchison Oceana Matrix Ltd.
> > Software Engineer 21 Princeton Place
> > 716-662-8973 x26 Orchard Park, NY 14127
> > --PGP Public Key--
> http://www.oceana.com/~ken/ksm.pgp
>
> __________________________________________________
> Do You Yahoo!?
> Make international calls for as low as $.04/minute with Yahoo! Messenger
> http://phonecard.yahoo.com/
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
