Followup:
Status: failure with SSL23
3) /etc/courier/esmtpd: TLS_PROTOCOL=SSL23
<- Incoming mail from our courier 0.39.2 server to local mailbox.
courier 0.56.0 server /var/log/maillog:
courieresmtpd: courieresmtpd: STARTTLS failed: couriertls: accept:
error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number
courier 0.39.2 server /var/log/maillog:
courieresmtp: id=00798039.46B88220.00005B42,from=<***>,addr=<***>: 500
couriertls: connectConnection reset by peer/Unexpected SSL connection
shutdown.
courieresmtp: id=00798039.46B88220.00005B42,from=<***>,addr=<***>,
status: failure
Apparently SSL23 doesn't do anything different than SSL3. I am having to
back our 0.56.0 server down to SSL2 again to make things work. Which isn't
right, because SSL3 worked fine before 0.56.0. None of these stupid wrong
version number errors.
Randall Shaw wrote:
> Gordon Messmer wrote:
>
>> Randall Shaw wrote:
>>>
>>> After digging around for this, it looks like the ONLY answer I found, was
>>> from Sam saying to set esmtpd to TLS_PROTOCOL=SSL2.
>>
>> You probably want SSL23, rather than SSL2:
>> http://www.mail-archive.com/[email protected]/msg29592.html
>
> Thank you. That option wasn't mentioned in the esmtpd file so I was unaware
> of it (and also somehow missed that mailing in my search of the list).
>
> I just now switched the setting to SSL23... And wouldn't you know it, our
> other server decides to start acting up and now I can't really test if it
> works! LOL... Our other server is throwing some oddball message of "Address
> family not supported by protocol" and also can't resolve our OWN domain name
> DNS anymore. It's not related... Just something else that decided to go
> wacky at the wrong time.
>
> Thanks for the pointer to that SSL23. Will keep an eye on it.
>
>
>
> Reference:
>
> 1) /etc/courier/esmtpd: TLS_PROTOCOL=SSL3
>
> <- Incoming mail from our courier 0.39.2 server to local mailbox.
>
> /var/log/maillog error:
> courieresmtpd: courieresmtpd: STARTTLS failed: couriertls: accept:
> error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number
>
>
> 2) /etc/courier/esmtpd: TLS_PROTOCOL=SSL2
>
> <- Incoming mail from our courier 0.39.2 server to local mailbox.
>
> /var/log/maillog notice:
> success: Message delivered.
>
>
> 3) /etc/courier/esmtpd: TLS_PROTOCOL=SSL23
>
> <- Incoming mail from our courier 0.39.2 server to local mailbox.
>
> * unknown reaction pending dns problem *
>
>
>
> We installed from courier-0.56.0.tar.bz2 on the new server (and
> courier-authlib-0.59.3.tar.bz2) that was on the website as of this last
> Thursday Aug 2nd.
-Randall Shaw
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
