On 26/02/2009, at 10:53 AM, Thomas Eckardt/eck wrote:
Hi all, Fritz has got a new version from me - 2.0.0_14.02 New config parm 'sendEHLO':If selected, ASSP sends an EHLO even if the client has sent only a HELO. This is usefull to force the usage of TLS to the server, because EHLO is needed before STARTTLS could be used. This parameter is ignored, if DoTLS is not set to 'do TLS'.If DoTLS and sendEHLO are set, ASSP will now try to use TLS when ever it is possible - to server and/or client.fixed:- poll error results in stucked workers - this error was seen mostly on MacOS - MacOS users should set ConnectionLog to verbose, all IO's will be processed but the poll-error message will be logged - please report if this is happend- database connection recovery is enhanced- passwords in AdminDB are no longer recoverable if the database is stolen (Digest::MD5 is needed) - sharing the AdminDB is available (set mysqlSlaveMode !!! look in to GUI) - RBL client some times kills worker on startup of ASSP with 'Cannot determine peer address.....' - enhanced error detection (output) for TNEF conversion (for full output on TNEFDEBUG run ASSP in console mode)- the right 'Apply Changes' now works again
With 14.02, doTLS no longer works for me. We cannot send emails when this is set. We have to change it to 'TLS to Proxy'.
With sendEHLO turned on I get this i the log:Feb-27-09 09:49:20 [Main_Thread] AdminUpdate: [root 127.0.0.1] DoTLS changed from '1' to '2'
Feb-27-09 09:49:31 [Main_Thread] Saving config Feb-27-09 09:49:32 [Main_Thread] Finished saving configFeb-27-09 09:49:48 [Worker_1] Connected: 192.168.1.77:1570 -> 192.168.1.9:25 -> 127.0.0.1:10026 Feb-27-09 09:49:48 [Worker_1] 192.168.1.77 info: faked '250-STARTTLS ready' for 127.0.0.1:10026 Feb-27-09 09:49:48 [Worker_1] 192.168.1.77 info: got '250-STARTTLS ready' from 127.0.0.1:10026 Feb-27-09 09:49:49 [Worker_1] 192.168.1.77 info: injected STARTTLS request to 127.0.0.1 Feb-27-09 09:49:49 [Worker_1] info: started TLS-SSL session for server 127.0.0.1:10026
Feb-27-09 09:49:49 [Worker_1] info: sent EHLO again to 127.0.0.1:10026Feb-27-09 09:49:49 [Worker_1] info: TLSQUEUE processed and cleared for 127.0.0.1:10026 Feb-27-09 09:49:49 id-88589-06107 [Worker_1] 192.168.1.77 <[email protected] > to: [email protected] info: no (more) data readable from 192.168.1.77 - Connection reset by peer - last command was 'DATA' Feb-27-09 09:49:49 [Worker_1] Error: unable to write to socket : Broken pipe Feb-27-09 09:49:49 [Worker_1] Disconnected: 192.168.1.77 - command list was 'EHLO,AUTHLOGIN,c2Nhbm5lck,c2Nhbm5lcg,MAIL FROM,RCPT TO,DATA' - insite 9 SocketCalls Feb-27-09 09:49:56 [Worker_1] Connected: 192.168.1.10:62643 -> 192.168.1.9:2525 -> 192.168.1.9:10026 Feb-27-09 09:49:56 [Worker_1] 192.168.1.10 info: faked '250-STARTTLS ready' for 192.168.1.9:10026 Feb-27-09 09:49:56 [Worker_1] 192.168.1.10 info: got '250-STARTTLS ready' from 192.168.1.9:10026 Feb-27-09 09:49:57 [Worker_1] 192.168.1.10 info: injected STARTTLS request to 192.168.1.9 Feb-27-09 09:49:57 [Worker_1] info: started TLS-SSL session for server 192.168.1.9:10026
Feb-27-09 09:49:57 [Worker_1] info: sent EHLO again to 192.168.1.9:10026Feb-27-09 09:49:57 [Worker_1] info: TLSQUEUE processed and cleared for 192.168.1.9:10026 Feb-27-09 09:49:58 id-88597-06023 [Worker_1] 192.168.1.10 <[email protected] > to: [email protected] info: no (more) data readable from 192.168.1.10 - Connection reset by peer - last command was 'DATA' Feb-27-09 09:49:58 [Worker_1] Error: unable to write to socket : Broken pipe Feb-27-09 09:49:58 [Worker_1] Disconnected: 192.168.1.10 - command list was 'EHLO,AUTHPLAINA,MAIL FROM,RCPT TO,DATA' - insite 7 SocketCalls Feb-27-09 09:50:20 [Worker_1] Connected: 192.168.1.77:1571 -> 192.168.1.9:25 -> 127.0.0.1:10026 Feb-27-09 09:50:20 [Worker_1] 192.168.1.77 info: faked '250-STARTTLS ready' for 127.0.0.1:10026 Feb-27-09 09:50:20 [Worker_1] 192.168.1.77 info: got '250-STARTTLS ready' from 127.0.0.1:10026 Feb-27-09 09:50:20 [Worker_1] 192.168.1.77 info: injected STARTTLS request to 127.0.0.1 Feb-27-09 09:50:20 [Worker_1] info: started TLS-SSL session for server 127.0.0.1:10026
Feb-27-09 09:50:20 [Worker_1] info: sent EHLO again to 127.0.0.1:10026Feb-27-09 09:50:20 [Worker_1] info: TLSQUEUE processed and cleared for 127.0.0.1:10026 Feb-27-09 09:50:20 id-88620-15688 [Worker_1] 192.168.1.77 <[email protected] > to: [email protected] info: no (more) data readable from 192.168.1.77 - Connection reset by peer - last command was 'DATA' Feb-27-09 09:50:20 [Worker_1] Error: unable to write to socket : Broken pipe Feb-27-09 09:50:20 [Worker_1] Disconnected: 192.168.1.77 - command list was 'EHLO,AUTHLOGIN,c2Nhbm5lck,c2Nhbm5lcg,MAIL FROM,RCPT TO,DATA' - insite 9 SocketCalls Feb-27-09 09:50:36 [Main_Thread] Admin connection from user root on host 127.0.0.1:49632; page:/ Feb-27-09 09:50:36 [Main_Thread] AdminUpdate: [root 127.0.0.1] DoTLS changed from '2' to '1'
Feb-27-09 09:50:36 [Main_Thread] Saving config Feb-27-09 09:50:37 [Main_Thread] Finished saving configFeb-27-09 09:50:46 [Worker_1] Connected: 192.168.1.2:59536 -> 192.168.1.9:25 -> 127.0.0.1:10026 Feb-27-09 09:50:46 [Worker_2] Connected: 192.168.1.2:59537 -> 192.168.1.9:25 -> 127.0.0.1:10026 Feb-27-09 09:50:51 [Worker_3] Connected: 192.168.1.77:1572 -> 192.168.1.9:25 -> 127.0.0.1:10026 Feb-27-09 09:50:51 [Worker_3] 192.168.1.77 info: got '250-STARTTLS ready' from 127.0.0.1:10026 Feb-27-09 09:50:52 id-88646-06107 [Worker_1] [Whitelisted] 192.168.1.2 <[email protected]> to: [email protected] whitelisted (no bad attachments) [PowerCoil Promo Flyer] -> nocollect:freq Feb-27-09 09:50:52 id-88646-06107 [Worker_1] 192.168.1.2 <[email protected] > to: [email protected] info: queued first data in sendqueue Feb-27-09 09:50:53 id-88646-06023 [Worker_2] [Whitelisted] 192.168.1.2 <[email protected]> to: [email protected] whitelisted (no bad attachments) [PowerCoil Promo Flyer] -> nocollect:freq Feb-27-09 09:50:53 id-88646-06023 [Worker_2] 192.168.1.2 <[email protected] > to: [email protected] info: queued first data in sendqueue Feb-27-09 09:50:53 id-88651-01273 [Worker_3] [Local] 192.168.1.77 <[email protected] > to: [email protected] local (no bad attachments) [Attached Image] - > nocollect:freq Feb-27-09 09:50:53 id-88651-01273 [Worker_3] [MessageOK] 192.168.1.77 <[email protected] > to: [email protected] message ok [Attached Image] Feb-27-09 09:50:55 id-88646-06107 [Worker_1] 192.168.1.2 <[email protected] > to: [email protected] convert and send data from sendqueue Feb-27-09 09:50:55 id-88646-06107 [Worker_1] [MessageOK] 192.168.1.2 <[email protected] > to: [email protected] message ok [PowerCoil Promo Flyer] Feb-27-09 09:50:56 id-88646-06107 [Worker_1] 192.168.1.2 <[email protected] > to: [email protected] info: no MIME/TNEF conversion done
Notice the broken pipe errors with doTLS set to 2 and no such errors with it set to 1.
Regards, James.
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H
_______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
