-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jorey Bump wrote:
| Goetz Babin-Ebell wrote, at 11/13/2008 03:57 PM:
|
|> If you don't want to do client authentication, why do you set
|> tls_ca_file at all ?
|
| Hmm, I do it to suppress these errors:
|
| TLS server engine: cannot l
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Frank Richter wrote:
| Hi,
| I've a cyrus-imapd 2.3.12 installation with these options in imapd.conf
|
| tls_cert_file: /etc/exim/etc/server.crt
| tls_key_file: /etc/exim/etc/server.key
| tls_ca_file: /etc/pki/tls/certs/ca-chain.crt
| tls_require_ce
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Johannes Rußek wrote:
| Hi Guys,
Hello Johannes,
| I'm trying to patch tls.c to make it able to pick different attributes
| in the client cert to authenticate from and will also try to update the
| openssl api in use if i get a bit help there.
While I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Daniel O'Connor wrote:
| On Wed, 23 Apr 2008, Goetz Babin-Ebell wrote:
|> Lukasz Michalski wrote:
|> | I have working setup with TLS/SSL encryption based on server
|> | certificate only. I have following message each successful login:
|&
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lukasz Michalski wrote:
| Hello,
Hello Lukasz,
| I have working setup with TLS/SSL encryption based on server certificate
| only. I have following message each successful login:
|
| Apr 22 15:42:46 black imap[26881]: TLS server engine: No CA file
| sp
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wesley Craig wrote:
| On 13 Apr 2008, at 17:19, Goetz Babin-Ebell wrote:
|> Cyrus barfing on no CA data set with no client authentication is a bug.
|
| Hard not to agree. :) Submit a patch, please.
OK, I've opened a ticked and submitted t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wesley Craig schrieb:
| From the article:
|> I’ve *finally* discovered why my IMAP server no longer likes my
|> self-signed certificates. The certificates are just fine. Cyrus is
|> just fine. It’s OpenSSL that’s the problem - Bug 1513 to be exact.
|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
brian schrieb:
| Goetz Babin-Ebell wrote:
|> brian schrieb:
|> | brian wrote:
|> |> I'm trying (and failing) to set up TLS and hope someone might be
able to
|> |> shed some light on my problem. Authentication failed so I ch
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
brian schrieb:
| brian wrote:
|> cyrus-imapd-2.3.9-7.fc7
|> openssl-0.9.8b-15.fc7
|>
|> I'm trying (and failing) to set up TLS and hope someone might be able to
|> shed some light on my problem. Authentication failed so I checked
|> maillog and found:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nels Lindquist schrieb:
> Hi, all.
Hello Nels,
> I'm configuring a Cyrus IMAPD server for a number of virtual domains,
> and I'm concerned about a potential issue with SSL/TLS for the virtual
> hosts, which is that I can't find a way of specifying dif
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dmitriy Kirhlarov schrieb:
> On Fri, Apr 20, 2007 at 09:47:07AM +0530, JOYDEEP wrote:
>> Goetz Babin-Ebell wrote:
>>> JOYDEEP schrieb:
>>>>> But I have come to know that digest-md5 and cram-md5 need sasldb. so
>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
JOYDEEP schrieb:
> Goetz Babin-Ebell wrote:
>> The problem is that cram-md5 and digest-md5 need direct access to the
>> pass phrase in plain text.
>> AFAIK LDAP doesn't support this.
>> You have to use TLS if you
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
JOYDEEP schrieb:
> Roberto R. Morelli wrote:
Hello Joydeep,
>>
>> Then we have the cyrus sasl modules installed:
>>
>> cyrus-sasl-md5-2.1.22-4
>> cyrus-sasl-2.1.22-4
>> cyrus-sasl-lib-2.1.22-4
>> cyrus-sasl-plain-2.1.22-4
>
> But I have come to know t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
fgang Hennerbichler schrieb:
> On 15.11.2006, at 00:59, Phil Pennock wrote:
>
>> I'm open to more feature requests.
>
> Well, here is one.
> For self-signed certificates I get the error
> STARTTLS promotion failed: SSL connect attempt failed with unk
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Phil Pennock schrieb:
Hello Phil,
> New feature: TLS client certificate authentication. If you can auth
> with a client cert for IMAP, this will work for Sieve; myself, I grant
> the certificate CN ("Phil Pennock") "a" admin rights on my INBOX. This
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello Paul,
Paul Pruett schrieb:
> I hacked some variations on the files trying to get imap applications to
> realize the root was not the cert for registerfly, but the cert that
> registerfly gave me, and then use server key for that cert...
> but it
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello Ram,
Ramprasad schrieb:
> I have cyrus-imapd-2.2.3 on FC1
>
> When mail is delivered from postfix to cyrus , via unix lmtp some mails
> with japanese characters in headers ( from: and Subject: ) get changed
>
> The headers get replaced with "
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Leena Heino schrieb:
Hello Leena,
>> Somewhere in bugzilla.mozilla.org is a feature request
>> from me asking for that feature.
>> But it was turned down in favor of a planned general overhaul
>> of the authentication framework
>> (from which I also n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
> Hello Goetz,
Hello Andreas,
> After some more research I finally found out that Thunderbird should not
> yet try to authenticate with certs anyway. The whole thing is not
> completely implemented but cannot be switched off,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
> Hello once more,
Hello Andreas,
> Goetz Babin-Ebell wrote:
>> Andreas Benzing schrieb:
>>
>> the tls_ca_path directory is used in certificate verification:
>> of the issuer dn of the cert to v
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
> Hello,
Hello Andreas,
> could please somebody tell me what tls_ca_path is good for if it is
> somehow ignored in the config file? For other servers putting the
> different CA-certs in one directory is enough but cyrus needs
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Richard schrieb:
> hi mitu,
Hello Richard,
please read reported error messages more carefully...
> i was getting repeated failures:
>
> S: * OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID STARTTLS LOGINDISABLED
> AUTH=DIGEST-MD5 AUTH=DIGEST-MD5 AU
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Denis Sacchet schrieb:
> Hi,
Hello Denis,
> I've got since 1 or 2 month problems with TLS connection to my cyrus
> server in IMAP. I will try to explain the configuration and the problem.
>
> First of all, here is my cyrus.conf and imapd.conf :
>
>
Nikola Milutinovic wrote:
Goetz Babin-Ebell wrote:
Nikola Milutinovic wrote:
Hmm, first of all, why "no-idea, no-rc5"? You have better
implementations on your system? I usually let OpenSSL be the provider
of those algorithms.
Because idea and rc5 have patent issues ?
Heh, fo
Nikola Milutinovic wrote:
Andreas Hasenack wrote:
On Mon, Nov 21, 2005 at 03:15:03PM +0100, Nikola Milutinovic wrote:
Then there is a change in semantics of the OpenSSL API and somebody
will have to dig through the docs.
Just changed a build option for openssl.
What didn't work (./Config
[EMAIL PROTECTED] wrote:
Hi,
Hello Leon,
I've found this on http://www.nyetwork.org/wiki/ssl_root_ca_new
"Create a PKCS#7 format of the Root CA's public certificate:
This will allow clients to easily import it into their
their PKI storage places, such as Outlook Express and Netscape.
This
Nicole Skyrca wrote:
> Right now I'm trying to solve the problem of why I get see the
> "unable to get local issuer certificate" messages when running the
> openssl s_client command. I'm not that familiar with ssl (or imap) and
> I
> don't know if this is normal or not, or if ssl is working pro
Cory D. Wiles wrote:
For some reason the default mailbox creations on my cyrus install have
become all screwed up.
cyrus creates mailboxes only on request by user
I would like to know what I should do to delete ALL of the boxes
currently on the system. I created an account for myself(this first
Jules Agee wrote:
Goetz Babin-Ebell wrote:
Alain Williams wrote:
On Sun, May 15, 2005 at 07:40:25PM -0400, Derrick J Brashear wrote:
I would also like to see '[info-cyrus]' put on the subject line.
Your local procmail (or whatever you use) has all the info
it needs to do that for you.
Alain Williams wrote:
On Sun, May 15, 2005 at 07:40:25PM -0400, Derrick J Brashear wrote:
I would also like to see '[info-cyrus]' put on the subject line.
Your local procmail (or whatever you use) has all the info
it needs to do that for you.
In my eyes it is just unnecessary noise that clobbers th
Andreas Hasenack wrote:
A friend of mine had these rules (cyrus-imapd-2.2.12):
--8<---
if
elsif
elsif header :contains "From" "[EMAIL PROTECTED]" {
discard;
}
if ...
(script continues)
--8<---
Note how the if/elsif structure is broken and a new if statement begins
31 matches
Mail list logo
