Re: [Assp-user] listenPortSSL not listening for SSL in 2.4.1

Mon, 30 Jun 2014 06:30:32 -0700 

meanwhile you can change the code

change in sub NewSMTPConnectionConnect {



    eval{$fhh->timeout($tout) if (! $timeout || $timeout < $tout);};
    if(!($client=$fhh->accept)) {

to

    eval{$fhh->timeout($tout) if (! $timeout || $timeout < $tout);};
    ${*$fhh}{_SSL_arguments}{SSL_startHandshake} = 1 if $isSSL;
    if(!($client = $fhh->accept)) {

Thomas



Von:    Nigel Kukard <nkukard+as...@lbsd.net>
An:     assp-user@lists.sourceforge.net
Datum:  27.06.2014 18:25
Betreff:        Re: [Assp-user] listenPortSSL not listening for SSL in 
2.4.1



On 06/27/2014 09:50 AM, Nigel Kukard wrote:
> Is anyone having issues with 2.3 => 2.4 where listenPortSSL is appearing
> not to work?
>
> STARTTLS is working 100%, but it seems that listenPortSSL is being
> ignored as the port is plain text not SSL.
>
> Running perl 5.20, with latest assp2 2.4.1 14167...
> Jun-27-14 11:34:21 [startup] ASSP version 2.4.1(14167) (Perl 5.020000)
> (on linux)
> Jun-27-14 11:34:21 [init] IO::Socket::SSL module version 1.994 installed
> - https and TLS/SSL is possible
>
> Logs show that it should be listening...  (assp 2.3 works 100%)
> Jun-27-14 11:35:13 [init] Listening for SMTP connections on 0.0.0.0:1025
> Jun-27-14 11:35:13 [init] Listening for SMTPS (SSL) connections on
> 0.0.0.0:1465
> Jun-27-14 11:35:13 [init] Listening for admin HTTPS connections on
> 0.0.0.0:55565
> Jun-27-14 11:35:13 [init] Listening for stat HTTP connections on
> 0.0.0.0:55566
> Jun-27-14 11:35:13 [init] Listening for additional SMTP connections on
> 0.0.0.0:1587
>
>
> SSL answering in plain text...
> # telnet localhost 1465
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> 220-xxxxxxxxx ESMTP Exim 4.82 #2 Fri, 27 Jun 2014 11:46:45 +0200
> 220-We do not authorize the use of this system to transport unsolicited,
> 220 and/or bulk e-mail.
>
> Netstat output...
> tcp        0      0 0.0.0.0:1465 0.0.0.0:*                   LISTEN
> 7764/assp.pl
>
>
> TLS working on 1487...
> # openssl s_client -host xxxxxxxx -port 587 -starttls smtp
> CONNECTED(00000003)
> depth=1 C = IL, O = StartCom Ltd., OU = Secure Digital Certificate
> Signing, CN = StartCom Class 2 Primary Intermediate Server CA
> ......

This is even more odd....  port 55565 is working 100% as a web SSL por, 
but not the SMTP port. I added LocalPort to the debug output.

ssl-new-listener(1465): Listen = 10
ssl-new-listener(1465): SSL_verify_mode = 0
ssl-new-listener(1465): Timeout = 5
ssl-new-listener(1465): LocalPort = 1465
ssl-new-listener(1465): SSL_server = 1
ssl-new-listener(1465): SSL_version = SSLv2/3
ssl-new-listener(1465): SSL_ca_file = /usr/local/assp/certs/xx.cacrt
ssl-new-listener(1465): SSL_cert_file = /usr/local/assp/certs/xx.pem
ssl-new-listener(1465): SSL_key_file = /usr/local/assp/certs/xx.key
ssl-new-listener(1465): Domain = 2
ssl-new-listener(1465): Reuse = 1
ssl-new-listener(1465): SSL_startHandshake = 1
ssl-new-listener(1465): SSL_use_cert = 1
DEBUG: .../IO/Socket/SSL.pm:2468: new ctx 593286944
ssl-new-listener(55565): SSL_cert_file = /usr/local/assp/certs/xx.pem
ssl-new-listener(55565): Reuse = 1
ssl-new-listener(55565): Domain = 2
ssl-new-listener(55565): SSL_key_file = /usr/local/assp/certs/xx.key
ssl-new-listener(55565): SSL_use_cert = 1
ssl-new-listener(55565): SSL_startHandshake = 1
ssl-new-listener(55565): LocalPort = 55565
ssl-new-listener(55565): Listen = 10
ssl-new-listener(55565): Timeout = 5
ssl-new-listener(55565): SSL_verify_mode = 0
ssl-new-listener(55565): SSL_server = 1
ssl-new-listener(55565): SSL_ca_file = /usr/local/assp/certs/xx.cacrt
ssl-new-listener(55565): SSL_version = SSLv2/3


------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user




DISCLAIMER:
*******************************************************
This email and any files transmitted with it may be confidential, legally 
privileged and protected in law and are intended solely for the use of the 

individual to whom it is addressed.
This email was multiple times scanned for viruses. There should be no 
known virus in this email!
*******************************************************




------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Assp-user mailing list
Assp-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/assp-user

Reply via email to