Dovecot 2.3.0 TLS
Aki Tuomi
aki.tuomi at dovecot.fi
Thu Jan 11 12:20:45 EET 2018
On 11.01.2018 12:18, Hauke Fath wrote:
> All,
>
> our dovecot installation provides a bundle of intermedia CA
> certificates using the ssl_ca option.
>
> 2.3.0 does not supply the bundle, resulting in various clients either
> complaining about an unverifiable server cert, or quietly not
> connecting. The log has
>
> Jan 5 17:01:46 Bounce dovecot: imap-login: Disconnected (no auth
> attempts in 0 secs): user=<>, rip=XXX, lip=YYY, TLS handshaking:
> SSL_accept() failed: error:14094416:SSL routines:SSL3_READ_BYTES:sslv3
> alert certificate unknown: SSL alert number 46,
> session=<uKK/kAlia+GCUyU5>
>
> We fixed the issue by downgrading to 2.2.33.2.
>
> Cheerio,
> hauke
>
Was the certificate path bundled in the server certificate?
Aki
More information about the dovecot
mailing list