Shehab Kazi writes:
Hi all,I am a student trying to set up Courier IMAP over SSL for a project where I'm trying to exploit some bugs OpenSSL, but I've run into problems and am really hoping someone here would know what to do. To start with I removed Openssl 0.9.8g that came with Ubuntu 8.10 and downloaded and installed OpenSSL 0.9.6c from source. When I telnet to port
Ubuntu is based on Debian, and uses a system software package management tool to manage installed packages. The system software packager tracks inter-package dependencies, and prevents one package from overwriting files owned by some other package.
By building and installing software manually, you have bypassed all these sanity checks.
993 the connection is closed immediately and in /var/log/syslog I see a line "imap-ssl: /usr/lib/courier-imap/bin/couriertls: No such file or directory". I've read some of the mail archives in which Sam mentions that its either because OpenSSL is not installed or that its libraries are static. I've made sure that .so libraries were created.
It doesn't matter if the libraries are installed now. What matters is whether not just the libraries, but the development files and header files were installed when Courier was built. If they were not installed at build time, no SSL/TLS support gets compiled.
I've also tried building just couriertls like this: $ cd <courier-source-dir>/tcpd $ make distclean $ export LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/usr/local/ssl/lib $ export LD_RUN_PATH=${LD_RUN_PATH}:/usr/local/ssl/lib
Please forget that these two environment variables ever exist. They should only be used when coercing binary-only vendor software into running on one's system.
Read the following: http://xahlee.org/UnixResource_dir/_/ldpath.html
$ export C_INCLUDE_PATH=${C_INCLUDE_PATH}:/usr/local/ssl/lib $ export LDFLAGS="${LDFLAGS} -L/usr/local/ssl/lib -Wl,--rpath=/usr/local/ssl/lib" $ export CC="gcc -L/usr/local/ssl/lib -Wl,--rpath=/usr/local/ssl/lib" $ ./configure $ make couriertls $ cp ./couriertls /usr/local/courier/bin (as root) I ofcourse get errors at make couriertls, one of them being libcouriertls.h:26:25: error: openssl/ssl.h: No such file or directory. I have made sure to even cp the .so files to the directories that it might be looking in.
It's not looking for an .so file. It's looking for header files.The following FAQ entry, towards its end, contains an example on properly using environment variables when building not just Courier, but any software that uses autoconf and automake. And the given example is actually for OpenSSL:
http://www.courier-mta.org/FAQ.html#authlib
What am I doing wrong? I don't know if its the fact that I don't have the "development package" because I've done this before (OpenSSL 0.9.6c) and it has worked.
The physical laws of this universe prohibit you from being able to build Courier and getting SSL/TLS support if the required OpenSSL (or GnuTLS) development package is not installed. If you built it, and you had working SSL/TLS, then you had the required development package installed.
pgpffDXIJmkai.pgp
Description: PGP signature
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
