Hi folks,
I've updated my system with lastest ports (openssl 0.9.7d, ucspi-ssl 0.67,
bincimap 1.2.6final).
well, I've some problems:
1- when I try to connect with Outlook, I see in the log:
@4000000040a8219c36c94a9c 371 0 [EMAIL PROTECTED]@192.168.17.22:]
<[EMAIL PROTECTED]> authenticated
@4000000040a8219d013549bc 372 0 [EMAIL PROTECTED]@192.168.17.22:]
<[EMAIL PROTECTED]> authenticated
but after few seconds ...
@4000000040a821c624ebf144 365 1 [EMAIL PROTECTED]@192.168.17.22:INBOX]
<[EMAIL PROTECTED]> logged off - bodies:0 statements:4
@4000000040a821c62565d464 sslserver: warning: dropping connection, unable to
speak SSL: error:00000005:lib(0):func(0):DH lib
@4000000040a821c625a10c8c 372 1 [EMAIL PROTECTED]@192.168.17.22:]
<[EMAIL PROTECTED]> logged off - bodies:0 statements:2
@4000000040a821c62615793c sslserver: warning: dropping connection, unable to
speak SSL: error:00000005:lib(0):func(0):DH lib
I've tried to recreate the key-crt-dh files, but nothing
2- with my palm, when I try to connect throught GPRS I see:
@4000000040a821282bc87154 311 0 [EMAIL PROTECTED]:] connection from
194.185.97.56
@4000000040a8212a1c4e3d1c 311 1 [EMAIL PROTECTED]:] shutting down -
read:37 bytes, wrote:164 bytes.
well, have you any advice for me? Could I send you something to help to find
the mistake?
I use always the same bincimap.conf, and the same runscript.
my bincimap.conf
----------------
/* -*- mode:java -*- */
// This program is free software; you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation; either version 2 of the License, or
// (at your option) any later version.
// You should have received a copy of the GNU General Public License
// along with this program; if not, write to the Free Software
// Foundation, Inc., 59 Temple Street #330, Boston, MA 02111-1307,
// USA.
// Global configuration file for Binc IMAP. Some settings in this file
// can be overrun with command line arguments.
//--------------------------------------------------------------------------
--
Authentication {
allow plain auth in non ssl = "yes", /* allow login or
authenticate
when not in
SSL/TLS mode */
auth penalty = 4, /* on auth failure,
* server sleeps so
* many seconds
* before allowing
* client to
* authenticate
* again.
*/
disable starttls = "no"
}
//--------------------------------------------------------------------------
--
Security {
jail path = "/usr/local/etc/bincimap/supervise/imaps",
jail user = "nobody",
jail group = "nobody"
}
//--------------------------------------------------------------------------
--
Log {
type = "multilog", /* supports
* multilog or
* syslog or
* stderr (for testing).
*/
environment ip variable = "TCPREMOTEIP"
}
//--------------------------------------------------------------------------
--
Mailbox {
depot = "Maildir++", /* Use Maildir++ style
* depot. */
type = "Maildir", /* only Maildir
* support */
path = "Maildir", /* default path */
auto create inbox = "yes", /* create INBOX in
* given format if
* it doesn't
* exist.
*/
auto subscribe mailboxes = "INBOX", /* list mailboxes
* in one string,
* seperated by
* commas
*/
umask = "077" /* use this umask
* when creating
* mailboxes, or
* when copying and
* appending
* messages.
*/
}
//--------------------------------------------------------------------------
--
Session {
idle timeout = 1860, /* idle timeout in
seconds */
auth timeout = 60, /* timeout before
auth in
seconds */
transfer timeout = 1200, /* timeout per
transferred com
unit (I/O) */
transfer buffer size = 1024 /* number of bytes
to buffer before
passing on to
client. */
}
//--------------------------------------------------------------------------
--
SSL {
pem file = "/var/qmail/certs/dh1024.pem", /* private key and
certificate
chain PEM file
name */
ca file = "", /* file to use as
certificate
authority */
cipher list = "!ADH:RC4+RSA:HIGH:MEDIUM:LOW:EXP:+SSLv2:+EXP",
verify peer = "no"
}
//--------------------------------------------------------------------------
--
/* $Id: bincimap.conf.in,v 1.2 2003/08/23 12:53:25 andreaha Exp $ */
My runscript
------------
#!/bin/sh
exec 2>&1
CERTFILE="/var/qmail/certs/pop3s.cert"
KEYFILE="/var/qmail/certs/pop3s.key"
DHFILE="/var/qmail/certs/dh1024.pem"
export CERTFILE KEYFILE DHFILE
exec \
/usr/local/bin/softlimit -m 3800000 \
/usr/local/bin/sslserver -c 100 -u 0 -g 0 -l 0 -HDRP 0 993 \
/usr/local/bin/bincimap-up \
--logtype=multilog --conf=/usr/local/etc/bincimap/bincimap.conf \
-- \
/usr/local/vpopmail/bin/vchkpw \
/usr/local/bin/bincimapd
Thanks for your support
Regards
Andrea
