Re: [Dovecot] IMAP STARTTLS Problem

6 May 2012

markus@opsys.de <markus@opsys.de>:

...
Am 05.05.2012 22:44, schrieb Patrick Ben Koetter:
...

Markus Fritz <markus.fritz@opsys.de>:

...
Am 05.05.2012 21:06, schrieb Markus Fritz:
Assuming your server cert is located in
/etc/ssl/certs/ca-certificates.crt try
this on your server:
openssl s_client -starttls imap -CAfile
/etc/ssl/certs/ca-certificates.crt -connect localhost:143
Use "2 logout" to get out of the session.
If it works, try the same from your client host.
Does it work both times?
yes:
Verify return code: 0 (ok)
. OK Capability completed.
it works. But I cannot login with Thunderbird. I imported the cert
in Thunderbird, too.
IIRC it is not enough to import the cert. You also need to set a policy i.e.
allow the cert to be used for e-mail.
p@rick
--
state of mind ()
http://www.state-of-mind.de
Franziskanerstraße 15      Telefon +49 89 3090 4664
81669 München              Telefax +49 89 3090 4666
Amtsgericht München        Partnerschaftsregister PR 563

Patrick Ben Koetter

Verify return code: 0 (ok)

tags

participants (1)