Error: SSL_accept() syscall failed

2019-10-11 Thread C. James Ervin via dovecot 

In setting up my new mail server, I am getting the following in the logs:

Oct 11 07:10:59 kumo dovecot[5704]: imap-login: Disconnected (no auth 
attempts in 0 secs): user=<>, rip=24.53.79.10, lip=172.26.12.90, *TLS 
handshaking: SSL_accept() syscall failed: Success*, 
session=


I have tried various ssl_protocols entries, but for now have defaulted 
back to ssl_protocols = !SSLv3 (the "out of the box" setting).


The certificate (ssl_cert = valid and the same one used by postfix.  However, I belive the error 
appeared only after removing the self signed certificate and installing 
the one I purchased.


Warning:  though I was a sysadmin a long long time, it has been a 
while!  I have not run a mail server in 15 years, but am moving my mail 
back "in-house" as I approach retirement!  I searched for a forum where 
I could post this issue, but only found this list.




# 2.2.33.2 (d6601f4ec): /etc/dovecot/dovecot.conf

# Pigeonhole version 0.4.21 (92477967)
# OS: Linux 4.15.0-1051-aws x86_64 Ubuntu 18.04.1 LTS
auth_mechanisms = plain login
mail_location = maildir:~/Maildir
mail_privileged_group = mail
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope 
encoded-character vacation subaddress comparator-i;ascii-numeric 
relational regex imap4flags copy include variables body enotify 
environment mailbox date index ihave duplicate mime foreverypart extracttext

namespace inbox {
  inbox = yes
  location =
  mailbox Drafts {
    special_use = \Drafts
  }
  mailbox Junk {
    special_use = \Junk
  }
  mailbox Sent {
    special_use = \Sent
  }
  mailbox "Sent Messages" {
    special_use = \Sent
  }
  mailbox Trash {
    special_use = \Trash
  }
  prefix =
}
passdb {
  driver = pam
}
plugin {
  sieve = ~/.dovecot.sieve
  sieve_dir = ~/sieve
}
protocols = " imap sieve pop3"
service auth {
  unix_listener /var/spool/postfix/private/dovecot-auth {
    group = postfix
    mode = 0660
    user = postfix
  }
}
ssl_cert =  was automatically rejected:%n%r
}
protocol imap {
  imap_client_workarounds = delay-newmail
  mail_max_userip_connections = 10
}
protocol pop3 {
  mail_max_userip_connections = 10
  pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
}

Re: Error: SSL_accept() syscall failed

2019-10-11 Thread C. James Ervin via dovecot 
 384 
bit ECDH (P-384)
 OpenSSL 1.0.2e   TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 
bit ECDH (P-384)
 OpenSSL 1.1.0j (Debian)  TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 
bit ECDH (P-384)
 OpenSSL 1.1.1b (Debian)  TLSv1.3 TLS_AES_256_GCM_SHA384, 384 bit 
ECDH (P-384)
 Thunderbird (60.6)   TLSv1.3 TLS_AES_128_GCM_SHA256, 384 bit 
ECDH (P-384)


 Done 2019-10-11 07:31:08 [ 170s] -->> 3.222.54.62:993 (kumo.kites.org) 
<<--



On 10/11/19 7:22 AM, C. James Ervin via dovecot wrote:


In setting up my new mail server, I am getting the following in the logs:

Oct 11 07:10:59 kumo dovecot[5704]: imap-login: Disconnected (no auth 
attempts in 0 secs): user=<>, rip=24.53.79.10, lip=172.26.12.90, *TLS 
handshaking: SSL_accept() syscall failed: Success*, 
session=