Hello again
I've configured my Cyrus 2.0.16 to work with SSL/TLS as the docs
included on the package says.
When I do:
imtest -t "" imaptest.unrc.edu.ar
i get the following:
C: C01 CAPABILITY
S: * OK test Cyrus IMAP4 v2.0.16 server ready
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID
NO_ATOMIC_RENAME UNSELECT MULTIAPPEND SORT THREAD=ORDEREDSUBJECT
THREAD=REFERENCES IDLE STARTTLS AUTH=DIGEST-MD5 AUTH=CRAM-MD5
S: C01 OK Completed
S01 OK Begin TLS negotiation now
verify error:num=18:self signed certificate
TLS connection established: TLSv1 with cipher DES-CBC3-SHA (168/168
bits)
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID
NO_ATOMIC_RENAME UNSELECT MULTIAPPEND SORT THREAD=ORDEREDSUBJECT
THREAD=REFERENCES IDLE STARTTLS AUTH=PLAIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5
S: C01 OK Completed
Please enter your password:
C: A01 AUTHENTICATE PLAIN
S: +
C: S: A01 NO bad protocol / cancel
Authentication failed. generic failure
Security strength factor: 0
. logout
* BYE LOGOUT received
. OK Completed
Connection closed.
What is this "verify error:num=18:self signed certificate" message and
why this "S: A01 NO bad protocol / cancel
Authentication failed. generic failure" shows?
If I configure the Netscape 4 client to use the secure connection it
works ok.
This is my logfile:
Aug 28 10:33:30 test imapd[8598]: accepted connection
Aug 28 10:33:30 test imapd[8598]: TLS engine: cannot load CA data
Aug 28 10:33:30 test imapd[8598]: TLS engine: No CA file specified.
Client side certs may not work
Aug 28 10:33:31 test imapd[8598]: starttls: TLSv1 with cipher
DES-CBC3-SHA (168/168 bits) no authentication
Aug 28 10:33:37 test imapd[8598]: badlogin: imaptest.unrc.edu.ar[ IP ]
PLAIN bad protocol / cancel
Aug 28 10:56:32 test master[8707]: about to exec /usr/cyrus/bin/lmtpd
Aug 28 10:56:32 test service-lmtpunix[8707]: executed
Aug 28 10:56:32 test lmtpd[8707]: accepted connection
Aug 28 10:56:32 test lmtpd[8707]: lmtp connection preauth'd as postman
Aug 28 10:56:36 test lmtpd[8707]: accepted connection
Aug 28 10:56:36 test lmtpd[8707]: lmtp connection preauth'd as postman
Aug 28 10:56:39 test lmtpd[8707]: accepted connection
Aug 28 10:56:39 test lmtpd[8707]: lmtp connection preauth'd as postman
Aug 28 10:57:39 test master[8592]: process 8707 exited, status 0
Aug 28 10:58:47 test master[9168]: about to exec /usr/cyrus/bin/imapd
Aug 28 10:58:47 test service-imaps[9168]: executed
Aug 28 10:58:47 test imapd[9168]: accepted connection
Aug 28 10:58:47 test imapd[9168]: TLS engine: cannot load CA data
Aug 28 10:59:01 test imapd[9168]: starttls: SSLv3 with cipher RC4-MD5
(128/128 bits) no authentication
Aug 28 10:59:02 test imapd[9168]: login:
cris.unrc.edu.ar[170.210.128.48] vperez plain+TLS User logged in
The first part is from when I did the imtest. The last is the connection
from the Netscape client.
Any comments?, Do I have a configuration problem?
Thanks.
--
Carlos Cristóbal Sabroe Yde
[EMAIL PROTECTED]
-----------------------------------------
Universidad Nacional de Río Cuarto
Dirección de Centro de Computos
Tel. ++54 (358) 467-6183
Ruta 36 Km. 601
(5800) Río Cuarto (CBA)
Argentina
