Hi Eric:
Here's what I get - BTW - I did see a reference in a forum post that
AUTH=DIGEST-MD5 should be removed from dovecot
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID:
611DF740642D8DD1BED7CF03AF5C9CB6930406E3BA4D76A1BBC25A1275B1B9AF
Session-ID-ctx:
Master-Key:
BA0399E80DE9DF60F0B90CFBE2B6C58438AB03DB427ECFE233A062DBDEBD7237824AAF8CB6666D445AEE22E184F863A6
Key-Arg : None
Krb5 Principal: None
PSK identity: None
PSK identity hint: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 8d f7 50 89 e0 14 cc 94-95 cf ab 4b af d9 a3 3f ..P........K...?
0010 - a9 9e 48 2b 48 5d a4 a1-37 62 f4 ed 62 43 31 e4 ..H+H]..7b..bC1.
0020 - 51 49 3a 3c 25 6a 22 8c-99 f0 60 bf d0 df b8 4c QI:<%j"...`....L
0030 - 22 e8 da 05 9e 4e ef f0-7c 16 ae c5 af 16 1e 01 "....N..|.......
0040 - 82 9a 62 79 93 0c 1b 73-bd b9 90 96 8e 5a 94 5d ..by...s.....Z.]
0050 - d6 9b 84 d4 88 1d 81 41-7a 24 29 97 d9 0f c5 6f .......Az$)....o
0060 - b8 69 ed b8 28 ce 62 82-03 4e e8 05 fb 8d 85 ae .i..(.b..N......
0070 - a5 21 9d 17 f7 1e f1 7e-14 75 4a 79 56 c7 f3 95 .!.....~.uJyV...
0080 - c3 bc 50 90 de b0 51 1b-48 1c 4f df 9a 58 0d 4b ..P...Q.H.O..X.K
0090 - c1 42 cb 64 4f 6c e9 7b-d5 1d 4a 04 dd 89 2a 2d .B.dOl.{..J...*-
Start Time: 1630549460
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot
toaster ready.
a OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS
THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN
NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH
ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE QUOTA]
Logged in
* BYE Logging out
a OK Logout completed (0.001 + 0.000 + 0.001 secs).
closed
On 9/1/2021 8:49 PM, Eric Broch wrote:
Try this script (replace with relevant user, password, & host) from
the command line of the server. It will yield what version of TLS
you're running.
<script>
#!/bin/bash
function imapscript () {
echo "a login $1 $2"
echo 'a logout'
sleep 1
echo 'quit'
}
[email protected]
pass=***********
host=mail.mydomain.com
imapscript "$user" $pass | openssl s_client -crlf -connect $host:993
</script>
On 9/1/2021 6:29 PM, Eric Broch wrote:
Does your web mail work?
On Sep 1, 2021, at 5:12 PM, Jeff Koch <[email protected]
<mailto:[email protected]>> wrote:
Neither IMAP or IMAPS will connect - Jeff
On 9/1/2021 6:16 PM, Eric Broch wrote:
What protocol, IMAP, IMAPS, SMTPS...?
On 9/1/2021 2:36 PM, Jeff Koch wrote:
We have a customer trying to connect to his qmail-toaster email
account using the MicroSoft Outlook app on an Android phone. He
keeps getting bounced off with the message 'can't connect to
server' or 'can't login'. I did some research on the MS forums
and apparently this Outlook app only connects with SSL (no
STARTTLS) and TLS 1.2 or higher. If the mailserver tries
anything else first the connection is dropped.
Is there any known work-around or configuration adjustment
needed to get this Android Outlook app to work with the toaster.
We're running qmail-1.03-2.2.qt.cdb.el7.x86_64.rpm
Thanks, Jeff
