Re: Squirrelmail:115 Can't Open SMTP Stream.

To: debian-user@lists.debian.org
Subject: Re: Squirrelmail:115 Can't Open SMTP Stream.
From: Eduardo M KALINOWSKI <eduardo@kalinowski.com.br>
Date: Wed, 16 Jul 2008 10:40:43 -0300
Message-id: <[🔎] 487DFA5B.4050903@kalinowski.com.br>
In-reply-to: <[🔎] 9d56246d0807160632o1b5fd106te508833f00a7bf18@mail.gmail.com>
References: <9d56246d0807140345q4829fed1rd0b0e9bcc793b7ea@mail.gmail.com> <[🔎] 9d56246d0807160632o1b5fd106te508833f00a7bf18@mail.gmail.com>

Semih Gokalp escreveu:

Hi all.
I asked this problem to squirrelmail-users mail list but I could notanswer about this problem so If it doesn't problem,I want to ask thisproblem to debian users mail list.I have Debian 4.0 Etch and i use Postfix 2.3.8-2 and Dovecot1.0.rc15-2etch4 IMAP and POP3 Server that is TLS support.I am usingMysql for Virtual domain and authentication.
But i have error on browser like this:"Operation now in progress
Server replied: 115 Can't open SMTP stream." when i try send email onsquirrelmail.I have not a problem(All Authentication and all ruleswork without any problem) when i use Thunderbird or Evolution.I searched this error on google but i can not find beneficial post ordocuments about this problem.
If I dont use TLS parameters on Postfix main.cf<http://main.cf>,squirrelmail send email without any problem but If Iuse TLS or choose "Secure SMTP (TLS) : false" on squirrelmail"Server Setting",squirrelmail dont sent email.
Squirrelmail "Server Setting" configuration like below:

General
-------
1.  Domain                 : xyz.com <http://xyz.com>
2.  Invert Time            : false
3.  Sendmail or SMTP       : SMTP

SMTP Settings
-------------
4.   SMTP Server           : 127.0.0.1 <http://127.0.0.1>
5.   SMTP Port             : 25
6.   POP before SMTP       : false
7.   SMTP Authentication   : login
8.   Secure SMTP (TLS)     : true
9.   Header encryption key :

and output from mail.log with TLS support like below:

#
Jul 14 11:05:48 debian postfix/smtpd[4403]: connect fromlocalhost[127.0.0.1 <http://127.0.0.1>]Jul 14 11:05:48 debian postfix/smtpd[4403]: lost connection afterUNKNOWN from localhost[127.0.0.1 <http://127.0.0.1>]Jul 14 11:05:48 debian postfix/smtpd[4403]: disconnect fromlocalhost[127.0.0.1 <http://127.0.0.1>]
#
and output from mail.log without TLS support (removed TLS parametersfrom main.cf <http://main.cf> and choosed "false" on squirrelmailServer Setting-Secure SMTP (TLS) : false):
#
Jul 14 11:06:46 debian postfix/smtpd[4463]: connect fromlocalhost[127.0.0.1 <http://127.0.0.1>]Jul 14 11:06:46 debian postfix/smtpd[4463]: E0ED83781E:client=localhost[127.0.0.1 <http://127.0.0.1>], sasl_method=LOGIN,sasl_username=a@xyz.com <mailto:a@xyz.com>Jul 14 11:06:46 debian postfix/cleanup[4467]: E0ED83781E:message-id=<e6ca13963aa61e59633f26690f8c9334.squirrel@mail.xyz.com<mailto:e6ca13963aa61e59633f26690f8c9334.squirrel@mail.xyz.com>>Jul 14 11:06:46 debian postfix/qmgr[4401]: E0ED83781E: from=<a@xyz.com<mailto:a@xyz.com>>, size=726, nrcpt=1 (queue active)Jul 14 11:06:46 debian dovecot: imap-login: Login: user=<a@xyz.com<mailto:a@xyz.com>>, method=PLAIN, rip=127.0.0.1 <http://127.0.0.1>,lip=127.0.0.1 <http://127.0.0.1>, securedJul 14 11:06:47 debian postfix/smtpd[4463]: disconnect fromlocalhost[127.0.0.1 <http://127.0.0.1>]Jul 14 11:06:47 debian dovecot: IMAP(a@xyz.com <mailto:a@xyz.com>):Disconnected: Logged out
#
I have only posted about TLS configuration parameters in Postfixmain.cf <http://main.cf> like below:
smtpd_use_tls=yes
smtpd_tls_cert_file=/etc/ssl/certs/postfix.pem
smtpd_tls_key_file=/etc/ssl/private/postfix.pem
smtpd_tls_auth_only=yes
If I disable TLS,I have non-security authentication with email clientprograms(because auth is plain text) so I dont want to disable TLS.
What should i do for use squirrelmail without TLS problem ?

It could be that the "Secure SMTP (TLS)" setting means trying to useTLS/SSL on connect, that is, just after the connection is opened. Thiswill not work. On port 25, exim uses the STARTTLS convention, in which anormal unencrypted connection is opened and follows the SMTP protocolnormally, until the client issues the STARTTLS command. The server sendsand "OK" message, and only then the TLS handshake starts.

I don't know how (and if) SquirrelMail can be configured to useSTARTTLS. It is possible, however, to configure exim to listen onanother port using the TLS-on-connect convention.

However, if SquirrelMail and exim are on the same host, connecting viathe loopback interface (which seems to be case, since you specified127.0.0.1 as the SMTP host), you should not need to worry that theconnections are encrypted.

Reply to:

Follow-Ups:
- Re: Squirrelmail:115 Can't Open SMTP Stream.
  - From: "Semih Gokalp" <semihgokalp@gmail.com>

References:
- Squirrelmail:115 Can't Open SMTP Stream.
  - From: "Semih Gokalp" <semihgokalp@gmail.com>

Prev by Date: Re: Blurry fonts in printed invoices
Next by Date: Re: [OT] GMail troubles [Was: Re: du-guidelines - point 7]
Previous by thread: Squirrelmail:115 Can't Open SMTP Stream.
Next by thread: Re: Squirrelmail:115 Can't Open SMTP Stream.
Index(es):
- Date
- Thread