[Dovecot] IMAP STARTTLS Problem

Patrick Ben Koetter p at state-of-mind.de
Sun May 6 10:51:07 EEST 2012


* markus at opsys.de <markus at opsys.de>:
> Am 05.05.2012 22:44, schrieb Patrick Ben Koetter:
> >* Markus Fritz <markus.fritz at opsys.de>:
> >>Am 05.05.2012 21:06, schrieb Markus Fritz:
> >Assuming your server cert is located in
> >/etc/ssl/certs/ca-certificates.crt try
> >this on your server:
> >
> >openssl s_client -starttls imap -CAfile
> >/etc/ssl/certs/ca-certificates.crt -connect localhost:143
> >
> >Use "2 logout" to get out of the session.
> >
> >If it works, try the same from your client host.
> >
> >Does it work both times?
> 
> yes:
> 
>  Verify return code: 0 (ok)
> ---
> . OK Capability completed.
> 
> it works. But I cannot login with Thunderbird. I imported the cert
> in Thunderbird, too.

IIRC it is not enough to import the cert. You also need to set a policy i.e.
allow the cert to be used for e-mail.

p at rick

-- 
state of mind ()

http://www.state-of-mind.de

Franziskanerstraße 15      Telefon +49 89 3090 4664
81669 München              Telefax +49 89 3090 4666

Amtsgericht München        Partnerschaftsregister PR 563




More information about the dovecot mailing list