Re: courier-imap fails

To: debian-user@lists.debian.org
Subject: Re: courier-imap fails
From: tony@vanderhoff.org
Date: Tue, 15 Nov 2016 18:10:40 -0000
Message-id: <[🔎] 7393823566427ad1f8bedefa5b177214.squirrel@webmail.vanderhoff.org>
In-reply-to: <[🔎] ce847259-47f0-2191-859a-2258bc2098b6@list-post.mks-mail.de>
References: <[🔎] 4e9342b2245db7a1adfafb3572015ccd.squirrel@webmail.vanderhoff.org> <[🔎] ce847259-47f0-2191-859a-2258bc2098b6@list-post.mks-mail.de>

> Tony, Di 15 Nov 2016 18:01:40 CET:
>
>> The only clue is in /var/log/mail.info:
>> imapd-ssl: couriertls: accept: error:14094417:SSL
>> routines:SSL3_READ_BYTES:sslv3 alert illegal parameter
>>
>> It turns out that this was reported in bug #787579, which I think should
>> have been resolved by now. Googling suggests a work-around: DH_BITS=2048
>> mkdhparams, but this seems to have little effect. I'm not sure what
>> format
>> a PEM file should take, but my dhparams.pem is only 201 bytes, which
>> seems
>> a bit small.
>
> Have you checked that the mkdhparams script really did create a new
> dhparams.pem? Looking at the man page of mkdhparams indicates that it
> does nothing if dhparams.pem exists and is less than 25 days old.
>

Thank you, Markus; that was indeed the problem. Well spotted!

Reply to:

References:
- courier-imap fails
  - From: tony@vanderhoff.org
- Re: courier-imap fails
  - From: Markus Schönhaber <debian-user@list-post.mks-mail.de>

Prev by Date: Re: courier-imap fails
Next by Date: where's proftpd?
Previous by thread: Re: courier-imap fails
Next by thread: where's proftpd?
Index(es):
- Date
- Thread