I am seeing strange behavior with STARTTLS falling
back to version 1 with outlook clients however when I
connect from localhost using openssl client command it
appears ready to do buisness using version 3.
I am using Cyrus 2.0.16 and OpenSSL 0.9.6 and am using
Outlook as my client to retrieve mail. The client
craps out with a very generic error message:
"Could not fetch new headers in the inbox for
catfish.jmq.net an unknown error has occured. Please
save any existing work and restart the program."
I have verified that STARTTLS is working find using:
"openssl s_client -connect localhost:993"
which outputs the following(I have ommited the
certificate output):
SSL handshake has read 1096 bytes and written 320
bytes
---
New, TLSv1/SSLv3, Cipher is DES-CBC3-SHA
Server public key is 1024 bit
SSL-Session:
Protocol : TLSv1
Cipher : DES-CBC3-SHA
Session-ID:
3DC0048E72D7B5B4EFC7ADC0EB3C5A83AA45EE6367BABDEE2F2B5EF5DAB643DA
Session-ID-ctx:
Master-Key:
A21B525CF050B216E85B69E6027EAA66BA3AF6E867C4CDF8B62752F5D3F4AC0F
9FE5C6EDF583DF3845A55D01554696F5
Key-Arg : None
Start Time: 998891753
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
* OK catfish Cyrus IMAP4 v2.0.16 server ready
This looks to me like things are ok. However when I
view the log entry from my home client I see the
following in my impad.log:
Aug 27 01:51:38 catfish master[3266]: [ID 392559
local6.debug] about to exec /us
r/local/bin/imapd
Aug 27 01:51:38 catfish service-imaps[3266]: [ID
518349 local6.debug] executed
Aug 27 01:51:38 catfish imapd[3266]: [ID 921384
local6.debug] accepted connectio
n
Aug 27 01:51:38 catfish imapd[3266]: [ID 459655
local6.notice] TLS engine: canno
t load CA data
Aug 27 01:51:38 catfish imapd[3266]: [ID 781445
local6.notice] starttls: TLSv1 w
ith cipher RC4-MD5 (128/128 bits) no authentication
Aug 27 01:51:38 catfish master[3004]: [ID 310780
local6.debug] process 3266 exit
ed, status 0
Aug 27 01:55:53 catfish master[3280]: [ID 392559
local6.debug] about to exec /us
r/local/bin/imapd
Aug 27 01:55:53 catfish service-imaps[3280]: [ID
518349 local6.debug] executed
Aug 27 01:55:53 catfish imapd[3280]: [ID 921384
local6.debug] accepted connectio
n
Aug 27 01:55:53 catfish imapd[3280]: [ID 459655
local6.notice] TLS engine: canno
t load CA data
Aug 27 01:55:53 catfish imapd[3280]: [ID 781445
local6.notice] starttls: TLSv1 w
ith cipher DES-CBC3-SHA (168/168 bits) no
authentication
Aug 27 02:00:06 catfish imapd[3280]: [ID 921384
local6.debug] accepted connectio
n
Aug 27 02:00:06 catfish imapd[3280]: [ID 781445
local6.notice] starttls: TLSv1 w
ith cipher RC4-MD5 (128/128 bits) no authentication
Aug 27 02:00:06 catfish master[3004]: [ID 310780
local6.debug] process 3280 exit
ed, status 0
Could someone help me out here? It's late and I am a
bit at a loss. I checked the archives but found little
to go on. Thanks in advance
__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/
