[Dovecot] IPv6 & SSL

Luigi Rosa lists at luigirosa.com
Fri Oct 5 21:14:53 EEST 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,
I have a dual stack server with Dovecot 2.1.10 listening on v4 and v6

Dovecot has a Comodo SSL certificate issued via NameCheap that works as
expected with IPv4

in 10-ssl.conf I have enabled these configuraction directives:

ssl = yes
ssl_cert = < /path/to/file.crt
ssl_key = < /path/to/file.key
ssl_parameters_regenerate = 202 hours


If I connect to Dovecot using the IPv6 address of the server with Thunderbird
15.0.1 uising CRAM-MD5 averything is ok.

If I enable SSL _and_ IPv6 on Thunderbird I get this error:

Oct  5 20:05:04 mail dovecot: imap-login: Disconnected (no auth attempts in 1
secs): user=<>, rip=2001:470:1f09:203:fdbf:508e:4a29:56c5,
lip=2001:470:1f09:203::badd:ecaf, TLS: SSL_read() failed: error:14094418:SSL
routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48,
session=<ZcMRtlPLqgAgAQRwHwkCA/2/UI5KKVbF>




Ciao,
luigi

- -- 
/
+--[Luigi Rosa]--
\

I will tell you a great secret, Captain. Perhaps the greatest of all
time. The molecules of your body are the same molecules that make up
this station and the nebula outside, that burn inside the stars
themselves. We are star stuff, we are the universe made manifest,
trying to figure itself out. As we have both learned, sometimes
the universe requires a change of perspective."
    --Delenn, "Distant Star", Babylon 5
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/

iEYEARECAAYFAlBvI50ACgkQ3kWu7Tfl6ZRBSACfRkp4FYpWaEZUQhIh0t6Vfs/I
JbcAoKGZ769yogYS7faCXKvPTuhQiHA8
=jxCB
-----END PGP SIGNATURE-----


More information about the dovecot mailing list