On Mon, Mar 16, 2015 at 10:24:10PM -0700, Joris Bolsens wrote: > > > On 03/16/2015 02:59 PM, Dan Purgert wrote: > > > > [snip] > > > Well you were definitely correct in that this will keep me busy for > awhile, can't get thunderbird to connect properly. > > I have verified that the SSL cert is good (got one from comodo) followed > instruction to the letter and checked to make sure that all users/pass > are set correctly in DB. Here is what I see in > > mail.log: > Mar 17 05:08:11 hawk961 dovecot: master: Dovecot v2.1.7 starting up > (core dumps disabled) > Mar 17 05:08:12 hawk961 postfix/master[2983]: daemon started -- version > 2.9.6, configuration /etc/postfix > Mar 17 05:09:27 hawk961 postfix/smtpd[3092]: connect from > c-my-host-name[76.102.110.154] > Mar 17 05:09:27 hawk961 dovecot: imap-login: Aborted login (no auth > attempts in 1 secs): user=<>, rip=my.ip.addr, lip=srvr.ip.addr, TLS, > session=<4BWJ+HQRhQBMZm6a> > Mar 17 05:09:37 hawk961 postfix/smtpd[3092]: lost connection after > UNKNOWN from my-host-name.net[my.ip.addr] > Mar 17 05:09:37 hawk961 postfix/smtpd[3092]: disconnect from > my-host-name.net[76.102.110.154] > Mar 17 05:09:49 hawk961 dovecot: imap-login: Aborted login (no auth > attempts in 0 secs): user=<>, rip=my.ip.addr, lip=srvr.ip.addr, TLS, > session=<nHnk+XQRiQBMZm6a> Check you're talking to the server correctly. There are two types of secure connections in email. In one type, the server will only talk on a secure connection - it expects the very first bit of communication to be an SSL handshake. On these, if you try to send plaintext commands, you will get booted off. These services typically listen on port 465 (SMTPS) and port 993 (IMAPS). This sort of server tends to be deprecated these days. In the other type of connection, the server starts with a normal, plaintext connection but the client "upgrades" the connection to secure by using the command "STARTTLS". This has the advantage that both plaintext and encrypted clients can be handled by the one server. These servers will listen on port 25 (SMTP, or 587, Submission) or port 143 (IMAP). So, check how you're trying to talk to your server. If you're using the first type of server, then "openssl s_client -connect my.ip.addr:465" should give you a connection. If you're using the other kind, you'll want "openssl s_client -connect my.ip.addr:25 -starttls smtp" will give you a secure connection. > > > and mail.info: > Mar 17 05:08:11 hawk961 dovecot: master: Dovecot v2.1.7 starting up > (core dumps disabled) > Mar 17 05:08:12 hawk961 postfix/master[2983]: daemon started -- version > 2.9.6, configuration /etc/postfix > Mar 17 05:09:27 hawk961 postfix/smtpd[3092]: connect from > my.host.name.net[my.ip.addr] > Mar 17 05:09:27 hawk961 dovecot: imap-login: Aborted login (no auth > attempts in 1 secs): user=<>, rip=my.ip.addr, lip=srvr.ip.addr, TLS, > session=<4BWJ+HQRhQBMZm6a> > Mar 17 05:09:37 hawk961 postfix/smtpd[3092]: lost connection after > UNKNOWN from my.host.name.net[my.ip.addr] > Mar 17 05:09:37 hawk961 postfix/smtpd[3092]: disconnect from > my.host.name.net[my.ip.addr] > Mar 17 05:09:49 hawk961 dovecot: imap-login: Aborted login (no auth > attempts in 0 secs): user=<>, rip=my.ip.addr, lip=srvr.ip.addr, TLS, > session=<nHnk+XQRiQBMZm6a> > Mar 17 05:12:57 hawk961 postfix/anvil[3099]: statistics: max connection > rate 1/60s for (smtps:my.ip.addr) at Mar 17 05:09:27 > Mar 17 05:12:57 hawk961 postfix/anvil[3099]: statistics: max connection > count 1 for (smtps:my.ip.addr) at Mar 17 05:09:27 > Mar 17 05:12:57 hawk961 postfix/anvil[3099]: statistics: max cache size > 1 at Mar 17 05:09:27 > > Been googling for hours and I cannot for the life of me find what the > problem is. > ~Joris >
Attachment:
signature.asc
Description: Digital signature