[Dovecot] IMAP STARTTLS Problem
Markus Fritz
markus at opsys.de
Mon May 7 14:40:58 EEST 2012
Am 07.05.2012 10:16, schrieb Patrick Ben Koetter:
> * Markus Fritz<markus at opsys.de>:
>> Am 07.05.2012 09:56, schrieb Patrick Ben Koetter:
>>> * Markus Fritz<markus at opsys.de>:
>>>> Am 06.05.2012 20:57, schrieb Patrick Ben Koetter:
>>>>> * markus at opsys.de<markus at opsys.de>:
>>>>>> Yep, I set the rights for the cert in Thunderbird. With this CERT
>>>>>> SSL is working in Thunderbird but not with STARTTLS.
>>>>>>
>>>>>> 4440[af7d580]: bcde800:mail.opsys.de:NA:CreateNewLineFromSocket: 1
>>>>>> BAD TLS not available due to temporary reason
>>>>> Your server responds it has a temporary problem. Set the server verbose to get
>>>>> more useful log output.
>>>>>
>>>> Now I got this:
>>>> May 6 22:38:35 opsys dovecot: imap-login: Disconnected (no auth
>>>> attempts): rip=84.150.37.251, lip=78.46.216.126, TLS: SSL_read()
>>>> failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert
>>>> unknown ca
>>>>
>>>> What have I to do now? The cert is signed by myself.
>>> You need to import your CAs certificate into TB.
>>>
>>> p at rick
>>>
>> I imported the .pem public file, it's there and I set the trust
>> status in Thunderbird. It still won't work.
>> Screenshot: http://snpr.cm/hLClYx.png
> This looks like your server certificate and not like your CA certificate.
>
> p at rick
>
>
Okay, I resolved the error. I had to change the protocols setting in
dovecot.conf. It was:
protocols = imap imaps pop3 pop3s
changed to:
protocols = imaps pop3s
Now everything works fine and who will use his Mail unencrypted?
More information about the dovecot
mailing list