Re: Thunderbird / Dovecot TLS Problem

To: debian-user@lists.debian.org
Subject: Re: Thunderbird / Dovecot TLS Problem
From: Markus Schönhaber <debian-user@list-post.mks-mail.de>
Date: Thu, 17 Mar 2022 09:00:15 +0100
Message-id: <[🔎] 9919cd56-d5c6-ba92-bde3-3c527720d129@list-post.mks-mail.de>
Mail-followup-to: debian-user@lists.debian.org
Reply-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20220317150542.06567417@client.bronzemail.com>
References: <[🔎] 20220317150542.06567417@client.bronzemail.com>

17.03.22, 08:05 +0100, Jeremy Ardley:

I've been using Thunderbird for years now but made some minor tweaks as
I'm setting up an imap proxy for remote access to my
debian/dovecot/postfix server.

The issue is I changed the account settings in thunderbird to use
STARTTLS and port 993. It now doesn't work. I see a connection in
wireshark, but then nothing happens and dovecot logs no attempt to
authenticate and it just times out.

By default, Dovecot listens on port 993 in TLS wrappermode, i. e. theencrypted connection has to be established before any user data can betransmitted (nothing will be sent unecrypted).OTOH, by telling Thunderbird to use STARTTLS you told it to try toestablish an unencrypted network connection first, and afterwards issuethe STARTTLS command over this plaintext connection to start the encryption.

This won't work. Change the connection security in TB to SSL/TLS.

--
Regards
  mks

Reply to:

References:
- Thunderbird / Dovecot TLS Problem
  - From: Jeremy Ardley <jeremy@bronzemail.com>

Prev by Date: Re: Thunderbird / Dovecot TLS Problem
Next by Date: Re: Thunderbird / Dovecot TLS Problem
Previous by thread: Re: Thunderbird / Dovecot TLS Problem
Next by thread: Re: Thunderbird / Dovecot TLS Problem
Index(es):
- Date
- Thread