On 04/30/16 11:59, Sam Varshavchik wrote: >> - courier, courier-imap: add support for TLS SNI when Courier is >> built with OpenSSL.
I'm happy to report that the 0.76.0.20160430 devel version does indeed support TLS SNI with OpenSSL. http://downloads.sourceforge.net/project/courier/courier-devel/20160430/courier-0.76.0.20160430.tar.bz2 ~ netstat -tanup | grep couriertcpd tcp6 0 0 :::993 :::* LISTEN 13053/couriertcpd <-- 13053 for imapd-ssl tcp6 0 0 :::465 :::* LISTEN 13033/couriertcpd tcp6 0 0 :::25 :::* LISTEN 13014/couriertcpd ~ strace -s 256 -f -p 13053 2>&1 | grep imapd.pem Then in another shell use something like this (ubuntu) with your own domain, OR use a regular mail client (Thunderbird 45.0 definitely works)... ~ TLS_TRUSTCERTS=/etc/ssl/certs TLS_VERIFYPEER=none couriertls \ -host=mrsam.goldcoast.org -port=993 -verify=mrsam.goldcoast.org and the result should be similar to this... 13250 access("/etc/courier/imapd.pem.192.168.0.2", R_OK) = -1 ENOENT (No such file or directory) 13250 open("/etc/courier/imapd.pem", O_RDONLY) = 5 13250 open("/etc/courier/imapd.pem", O_RDONLY) = 5 13250 access("/etc/courier/imapd.pem.mrsam.goldcoast.org", R_OK) = 0 13250 access("/etc/courier/imapd.pem.192.168.0.2", R_OK) = -1 ENOENT (No such file or directory) 13250 open("/etc/courier/imapd.pem", O_RDONLY) = 5 13250 open("/etc/courier/imapd.pem", O_RDONLY) = 5 13250 open("/etc/courier/imapd.pem.mrsam.goldcoast.org", O_RDONLY) = 5 13250 open("/etc/courier/imapd.pem.mrsam.goldcoast.org", O_RDONLY) = 5 13250 open("/etc/courier/imapd.pem.mrsam.goldcoast.org", O_RDONLY) = 5 And as a bonus, the above imapd.pem.mrsam.goldcoast.org is symlinked to a LetsEncrypt certificate that includes a SAN of www.mrsam.goldcoast.org. Subject: CN=mrsam.goldcoast.org X509v3 Subject Alternative Name: DNS:mrsam.goldcoast.org, DNS:www.mrsam.goldcoast.org Excellent work Sam and many many thanks. ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z _______________________________________________ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
