Thanks Peter,
On 19 Dec 2004, at 16:00, Peter Stuge wrote:
Did you create your own CA? Or has some existing CA made a certificate for you for personal SSL connections?
my own CA
Aha, you're using an SSL TCP server.. I see. Well, correct, change some of Binc's configuration and throw away sslserver. I would suggest trying that next.
I've tryed, but without success. I've changed my runscript like this:
------------------------------------------ #!/bin/sh exec 2>&1
exec \ /usr/local/bin/softlimit -m 10000000 \ /usr/local/bin/tcpserver -c 100 -u 0 -g 0 -l 0 -HDRP 0 993 \ /usr/local/bin/bincimap-up \ --logtype=multilog --conf=/usr/local/etc/bincimap/bincimap.conf \ -- \ /usr/local/vpopmail/bin/vchkpw-noroaming \ /usr/local/bin/bincimapd ------------------------------------------
and I've changed the bincimap.conf with SSL:
---------------------------------------- allow plain auth in non ssl = "no", disable starttls = "no" pem file = "/var/qmail/certs/mail.pem", ca file = "/var/qmail/certs/nesys.ca", cipher list = "", verify peer = "no" ----------------------------------------
In /var/qmail/certs I've these files:
-rw-r--r-- 1 root qmail 245 Oct 9 16:41 dh1024.pem -rw-r--r-- 1 root qmail 3847 Dec 19 13:19 mail.crt -rw-r--r-- 1 root qmail 466 Oct 14 16:53 mail.dh -rw-r--r-- 1 root qmail 887 Dec 19 13:19 mail.key -rw------- 1 root qmail 4734 Dec 20 00:57 mail.pem -rw-r--r-- 1 root qmail 1395 Dec 19 14:41 nesys.ca
mail.pem is the result of 'cat mail.key mail.crt'
In my log I see for example:
@4000000041c6163c351925b4 15068 0 [EMAIL PROTECTED]:] connection from 192.168.17.23
@4000000041c6163c35355c5c 15068 1 [EMAIL PROTECTED]:] shutting down () - read:111 bytes, wrote:212 bytes.
what is wrong? thanks for any suggestion regards Andrea
