[Dovecot] SSL / TLS Problem

Leander S. leander.schaefer at googlemail.com
Mon Jul 12 21:21:23 EEST 2010


P.S. I just had another look at my Logs again - and I'm finding now the 
following when Thunderbird 3.1 tries to establish TLS unsuccessful:


server dovecot: imap-login: Disconnected (no auth attempts): 
rip=84.157.147.152, lip=192.168.1.100, TLS handshaking: SSL_accept() 
failed: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad 
certificate



But still - I'm not getting it since I'm even able to establish the 
connection successful via the konsol as you could see in one of my last 
mails. weired.





#############################





  No problem:

server [~]# dovecot -n
# 1.2.4: /usr/local/etc/dovecot.conf
# OS: FreeBSD 8.0-RELEASE amd64  ufs
protocols: imap imaps pop3 pop3s managesieve
listen(default): *
listen(imap): *
listen(pop3): *
listen(managesieve): *:2000
ssl_cert_file: /etc/ssl/mail/mail.cert
ssl_key_file: /etc/ssl/mail/mail.key
login_dir: /var/run/dovecot/login
login_executable(default): /usr/local/libexec/dovecot/imap-login
login_executable(imap): /usr/local/libexec/dovecot/imap-login
login_executable(pop3): /usr/local/libexec/dovecot/pop3-login
login_executable(managesieve): /usr/local/libexec/dovecot/managesieve-login
login_greeting: home MailSystem
verbose_proctitle: yes
first_valid_uid: 2000
first_valid_gid: 2000
mail_privileged_group: mail
mail_location: maildir:/var/mail/%d/%n
mail_executable(default): /usr/local/libexec/dovecot/imap
mail_executable(imap): /usr/local/libexec/dovecot/imap
mail_executable(pop3): /usr/local/libexec/dovecot/pop3
mail_executable(managesieve): /usr/local/libexec/dovecot/managesieve
mail_plugins(default): quota imap_quota autocreate
mail_plugins(imap): quota imap_quota autocreate
mail_plugins(pop3): quota
mail_plugins(managesieve):
mail_plugin_dir(default): /usr/local/lib/dovecot/imap
mail_plugin_dir(imap): /usr/local/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/local/lib/dovecot/pop3
mail_plugin_dir(managesieve): /usr/local/lib/dovecot/managesieve
imap_client_workarounds(default): outlook-idle
imap_client_workarounds(imap): outlook-idle
imap_client_workarounds(pop3):
imap_client_workarounds(managesieve):
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
pop3_client_workarounds(managesieve):
managesieve_implementation_string(default): dovecot
managesieve_implementation_string(imap): dovecot
managesieve_implementation_string(pop3): dovecot
managesieve_implementation_string(managesieve): home
lda:
   postmaster_address: admin at server.home
   mail_plugins: sieve
   log_path: /var/log/dovecot-deliver.log
   info_log_path: /var/log/dovecot-deliver.log
auth default:
   mechanisms: cram-md5
   username_format: %Lu
   passdb:
     driver: sql
     args: /usr/local/etc/dovecot-sql.conf
   userdb:
     driver: sql
     args: /usr/local/etc/dovecot-sql.conf
   socket:
     type: listen
     client:
       path: /var/spool/postfix/private/auth
       mode: 432
       user: postfix
       group: postfix
     master:
       path: /var/run/dovecot/auth-master
       mode: 384
       user: dovecot
       group: dovecot
plugin:
   sieve: ~/.dovecot.sieve
   sieve_dir: ~/sieve
   sieve_global_path: /usr/local/etc/dovecot/sieve/default.sieve
   autocreate: Trash
   autocreate2: Sent
   autocreate3: Drafts
   autocreate4: Spam
   autocreate5: Virus
   autosubscribe: Trash
   autosubscribe2: Sent
   autosubscribe3: Drafts
   autosubscribe4: Spam
   autosubscribe5: Virus
server [~]#





Best Regards






Am 12.07.10 19:37, schrieb Charles Marcus:
> On 2010-07-12 1:34 PM, Leander S. wrote:
>> But no, I don't know how it came there - I must have accidently done a
>> typo while editing the mail. It looks like that on the server:
> Always post output of dovecot -n, not copy/pastes from the config file
> (unless it is something that isn't output by dovecot -n)...
>



More information about the dovecot mailing list