Re: [Dovecot] IMAP STARTTLS Problem
- markus@opsys.de markus@opsys.de:
Am 05.05.2012 22:44, schrieb Patrick Ben Koetter:
- Markus Fritz markus.fritz@opsys.de:
Am 05.05.2012 21:06, schrieb Markus Fritz: Assuming your server cert is located in /etc/ssl/certs/ca-certificates.crt try this on your server:
openssl s_client -starttls imap -CAfile /etc/ssl/certs/ca-certificates.crt -connect localhost:143
Use "2 logout" to get out of the session.
If it works, try the same from your client host.
Does it work both times?
yes:
Verify return code: 0 (ok)
. OK Capability completed.
it works. But I cannot login with Thunderbird. I imported the cert in Thunderbird, too.
IIRC it is not enough to import the cert. You also need to set a policy i.e. allow the cert to be used for e-mail.
p@rick
-- state of mind ()
Franziskanerstraße 15 Telefon +49 89 3090 4664 81669 München Telefax +49 89 3090 4666
Amtsgericht München Partnerschaftsregister PR 563
participants (1)
-
Patrick Ben Koetter