[Dovecot] iphone connection problem

dovecot at feb17.org dovecot at feb17.org
Tue Sep 2 19:55:07 EEST 2008 

Hi, I recently changed from uw imap to dovecot on the sound recommendation of a friend and have mostly succeeded in getting all of my clients up and running, but am really stuck with the iPhone which is failing to make connections.  I run certificates on all of my clients and thunderbird happily connects both locally and remotely.  I installed the certificate on the iPhone after great pain (pk12 via the Web administration utility). When you open the configurations on the phone , it tries to make a test connection to the server and fails with a generic SSL error.  Dovecot reports just a generic disconnected error (imap-login/client.c line 333), and it appears to be dropping the connection.  

Sep  2 09:38:17 inchoate dovecot: imap-login: Disconnected (auth failed, 0 attempts): rip=209.204.139.116, lip=192.168.0.252, TLS

I have run ssldump and here is the relevant section.  If anybody has any insights they would be greatly appreciated

Darren


ssldump tail..

      ServerHelloDone
1 5  0.1128 (0.0838)  C>SV3.1(7)  Handshake
      Certificate
1 6  0.1629 (0.0500)  C>SV3.1(134)  Handshake
      ClientKeyExchange
1 7  0.1629 (0.0000)  C>SV3.1(1)  ChangeCipherSpec
1 8  0.1629 (0.0000)  C>SV3.1(48)  Handshake
1 9  0.1677 (0.0048)  S>CV3.1(1)  ChangeCipherSpec
1 10 0.1677 (0.0000)  S>CV3.1(48)  Handshake
1 11 0.1761 (0.0084)  S>CV3.1(48)  application_data
1 12 0.2650 (0.0889)  C>SV3.1(32)  Alert
1 13 0.2651 (0.0000)  S>CV3.1(32)  Alert
1    0.2651 (0.0000)  S>C  TCP FIN
1    0.2675 (0.0024)  C>S  TCP FIN


[root at inchoate src]# /tools/dovecot/sbin/dovecot -n
# 1.1.2: /tools/dovecot-1.1.2/etc/dovecot.conf
ssl_ca_file: /etc/mail/certs/cacert_plus_crl.pem
ssl_cert_file: /etc/mail/certs/cert.pem
ssl_key_file: /etc/mail/certs/key.pem
ssl_verify_client_cert: yes
login_dir: /tools/dovecot-1.1.2/var/run/dovecot/login
login_executable: /tools/dovecot-1.1.2/libexec/dovecot/imap-login
auth default:
  verbose: yes
  ssl_require_client_cert: yes
  passdb:
    driver: pam
  userdb:
    driver: passwd

More information about the dovecot mailing list