Re: Fetchmail + SSL
On Wed, 17 Nov 2004 13:20:53 -0200
"Mario O. de Menezes" <mario@curiango.ipen.br> wrote:
> instale o fetchmail-ssl que dá suporte a SSL.
>
> #apt-get install fetchmail-ssl
>
Olá colega.
Só para informação este pacote atualmente só existe na versão estável do debian, pois na testing e sid já foi incorporado ao pacote fechmail padrão. Porém a questão não é apenas a instalação do mesmo, mas a configuração do ~/.fetchmailrc , pois até então não encontrei na documentação como fazer tal configuração. Achei pelo google o seguinte, em
http://www.networksecuritytech.com/viewtopic.php?t=1849
First, you need a ssl privatekey and certificate, cause Gmail requires secure socket layer transfer. You can create your own RSA private key and certificate by following these commands in your home directory, or where ever, just remember.
me@home$ openssl genrsa -out privekey.pem 2048
me@home$ openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095
The first command creates a private key, the second command creates a self signed certificate. It will prompt you for some info that the certificate will use.
Second, I configure fetchmail, by creating a .fetchmailrc file in my home directory.
me@home$ vi .fetchmailrc
set postmaster "$USER"
set bouncemail
set no spambounce
set properties ""
poll pop.gmail.com with proto POP3
user 'you@gmail.com' there with password 'password' is '$USER' here options flush no rewrite ssl sslkey '/path/to/privatekey' sslcert '/path/to/sslcertificate'
This is pretty basic using only one GMAIL pop server, everything slanted you will need to replace with your info.
Segui os passos, porém quando rodo o fetchmail recebo o seguinte log com alguns erros:
fetchmail: 6.2.5 querying pop.gmail.com (protocol POP3) at Qua 17 Nov 2004 12:44:30 BRT: poll started
fetchmail: Issuer Organization: Thawte Consulting cc
fetchmail: Issuer CommonName: Thawte Server CA
fetchmail: Server CommonName: pop.gmail.com
fetchmail: pop.gmail.com key fingerprint: C9:1F:21:73:31:EE:DD:EB:9E:95:D3:73:55:E0:A8:1D
fetchmail: Warning: server certificate verification: unable to get local issuer certificate
fetchmail: Issuer Organization: Thawte Consulting cc
fetchmail: Issuer CommonName: Thawte Server CA
fetchmail: Server CommonName: pop.gmail.com
fetchmail: Warning: server certificate verification: certificate not trusted
fetchmail: Issuer Organization: Thawte Consulting cc
fetchmail: Issuer CommonName: Thawte Server CA
fetchmail: Server CommonName: pop.gmail.com
fetchmail: Warning: server certificate verification: unable to verify the first certificate
fetchmail: POP3< +OK Gpop ready.
fetchmail: POP3> CAPA
fetchmail: POP3< +OK Capability list follows
fetchmail: POP3< USER
fetchmail: POP3< RESP-CODES
fetchmail: POP3< EXPIRE 0
fetchmail: POP3< LOGIN-DELAY 300
fetchmail: POP3< .
fetchmail: POP3> USER darkstarbr@gmail.com
fetchmail: POP3< +OK send PASS
fetchmail: POP3> PASS *
fetchmail: POP3< +OK Welcome.
fetchmail: POP3> STAT
fetchmail: POP3< +OK 1 1614
fetchmail: POP3> LAST
fetchmail: POP3< -ERR Not supported
fetchmail: Not supported
fetchmail: POP3> UIDL
fetchmail: POP3< +OK
fetchmail: POP3< 1 <20041117124353.1075fbe9@galaxy.home.br>
fetchmail: POP3< .
1 mensagem para darkstarbr@gmail.com em pop.gmail.com (1614 octetos).
fetchmail: POP3> LIST 1
fetchmail: POP3< +OK 1 1614
fetchmail: POP3> TOP 1 99999999
fetchmail: POP3< -ERR malformed command
fetchmail: malformed command
fetchmail: couldn't fetch headers, message darkstarbr@gmail.com@gmail-pop.google.akadns.net:1 (1614 octets)
fetchmail: POP3> QUIT
fetchmail: 6.2.5 querying pop.gmail.com (protocol POP3) at Qua 17 Nov 2004 12:44:40 BRT: poll completed
De qualquer fico muito grato pela atenção.
--
+--------------------------------------------------+
+ Marcelo Gomes de Santana DarkStar +
+ GNU/Linux User #208778 GPG ID: 5BECD54C +
+ Projeto Debian-BR - <http://www.debian-br.org> +
+--------------------------------------------------+
Mensagem da vez:
Os novos ricos são cruéis com os escravos
--anônimo
Reply to: