TLS handshake issue

2016-03-19 Thread John Oliver
dovecot-2.0.9 on CentOS 6.7 The system in question is not connected to the Internet, so I can't copy-and-paste. I have to type anything required :-( Brand-new out-of-the-box install with a really minimal dovecot.conf including: service imap-login { inet_listener imaps { address = 192.168.

Re: TLS handshake issue

2016-03-19 Thread Jerry
On Thu, 17 Mar 2016 13:56:22 -0700, John Oliver replied: > With our old mail server, it "just works"... after going through the > mail setup, we don't need to do anything fancy. I can't help but > imagine that there's some other difference in the default configs. > I'll have to dump the configs o

VS: Re: VS: Re: TLS handshake issue

2016-03-19 Thread Aki Tuomi
Most applications would expect to see nonencrypted imap reply in 143 and would use starttls to engage ssl ---Aki TuomiDovecot oy Alkuperäinen viesti Lähettäjä: John Oliver Päivämäärä: 17.3.2016 21.45 (GMT+02:00) Saaja: dovecot@dovecot.org Aihe: Re: VS: Re: TLS handshake

Re: TLS handshake issue

2016-03-19 Thread John Oliver
On Thu, Mar 17, 2016 at 08:30:32PM +0300, Andrey Fesenko wrote: > May be use -starttls imap or 993 port and more logs verbose_ssl=yes I am using verbose_ssl = yes Dovecot is currently working with SSL on 143, and I'm trying to not change current client config. As for '-starttls', in what context

Re: VS: Re: TLS handshake issue

2016-03-19 Thread John Oliver
On Thu, Mar 17, 2016 at 08:38:55PM +0200, Aki Tuomi wrote: > openssl s_client -connect host:143 -starttls imap  Why? 'openssl' works just fine, it shows me the certificate and the IMAP banner, and I can log in and list mail. -- ***

Re: TLS handshake issue

2016-03-19 Thread Andrey Fesenko
On Thu, Mar 17, 2016 at 8:18 PM, John Oliver wrote: > dovecot-2.0.9 on CentOS 6.7 > > The system in question is not connected to the Internet, so I can't > copy-and-paste. I have to type anything required :-( > > Brand-new out-of-the-box install with a really minimal dovecot.conf > including: > >

Re: TLS handshake issue

2016-03-19 Thread John Oliver
On Thu, Mar 17, 2016 at 08:04:26PM +, Ron Leach wrote: > On 17/03/2016 17:18, John Oliver wrote: > >The dovecot log with lots of verbosity enabled tells me: > > > >imap-login: Info: Disconnected (no auth attempts): rip=192.168.1.200, > >lip=192.168.1.10, TLS handshaking: Disconnected > > > 'n

Re: TLS handshake issue

2016-03-19 Thread Ron Leach
On 17/03/2016 17:18, John Oliver wrote: The dovecot log with lots of verbosity enabled tells me: imap-login: Info: Disconnected (no auth attempts): rip=192.168.1.200, lip=192.168.1.10, TLS handshaking: Disconnected 'no auth attempts' has been reported on the list a few times before and, in s

VS: Re: TLS handshake issue

2016-03-18 Thread Aki Tuomi
openssl s_client -connect host:143 -starttls imap  ---Aki TuomiDovecot oy Alkuperäinen viesti Lähettäjä: John Oliver Päivämäärä: 17.3.2016 20.11 (GMT+02:00) Saaja: dovecot@dovecot.org Aihe: Re: TLS handshake issue On Thu, Mar 17, 2016 at 08:30:32PM +0300, Andrey Fesenko