11 Jan
2018
11 Jan
'18
12:20 p.m.
On 11.01.2018 12:18, Hauke Fath wrote:
All,
our dovecot installation provides a bundle of intermedia CA certificates using the ssl_ca option.
2.3.0 does not supply the bundle, resulting in various clients either complaining about an unverifiable server cert, or quietly not connecting. The log has
Jan 5 17:01:46 Bounce dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=XXX, lip=YYY, TLS handshaking: SSL_accept() failed: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate unknown: SSL alert number 46, session=<uKK/kAlia+GCUyU5>
We fixed the issue by downgrading to 2.2.33.2.
Cheerio, hauke
Was the certificate path bundled in the server certificate?
Aki