Package: uw-imapd Version: 7:2002edebian1-13.1 Severity: important
With uw imapd (and ipop3d), you don't need to do anything special for SSL support. You just have to have inetd listen on the SSL ports, and start imapd in the usual manner. With ipv4, this works just fine: # telnet -4 fluffy 143 Trying 192.168.1.20... Connected to fluffy.internal.torchbox.com. Escape character is '^]'. * OK [CAPABILITY IMAP4REV1 LOGIN-REFERRALS STARTTLS LOGINDISABLED] * fluffy.internal.torchbox.com IMAP4rev1 2003.339 at Tue, 27 Mar 2007 * 11:01:59 +0100 (BST) # telnet -4 fluffy 993 Trying 192.168.1.20... Connected to fluffy.internal.torchbox.com. Escape character is '^]'. (Don't expect any response, is SSL) However, if you enabled ipv6 in inetd (eg proto tcp46), then it doesn't detect that the ipv6 connect was SSL: # telnet -6 fluffy 143 Trying 2001:8b0:c5:1::20... Connected to fluffy.torchbox.com. Escape character is '^]'. * OK [CAPABILITY IMAP4REV1 LOGIN-REFERRALS STARTTLS LOGINDISABLED] * fluffy.internal.torchbox.com IMAP4rev1 2003.339 at Tue, 27 Mar 2007 * 11:07:10 +0100 (BST) # telnet -6 fluffy 993 Trying 2001:8b0:c5:1::20... Connected to fluffy.torchbox.com. Escape character is '^]'. * OK [CAPABILITY IMAP4REV1 LOGIN-REFERRALS STARTTLS LOGINDISABLED] * fluffy.internal.torchbox.com IMAP4rev1 2003.339 at Tue, 27 Mar 2007 * 11:01:59 +0100 (BST) (Notice how when connecting to port 993 over ipv6 it responds with the clear text IMAP welcome, rather than waiting for SSL negotiation, as it does with ipv4) I've tried with the version from stable, and from unstable (rebuilt), and both show the same bug. -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.17-2-686 Locale: LANG=en_GB, LC_CTYPE=en_GB (charmap=ISO-8859-1) Versions of packages uw-imapd depends on: ii debconf [debconf 1.4.30.13 Debian configuration management sy ii libc-client2002e 7:2002edebian1-11sarge1 UW c-client library for mail proto ii libc6 2.3.2.ds1-22sarge5 GNU C Library: Shared libraries an ii libcomerr2 1.37-2sarge1 common error description library ii libkrb53 1.3.6-2sarge3 MIT Kerberos runtime libraries ii libpam-runtime 0.76-22 Runtime support for the PAM librar ii libpam0g 0.76-22 Pluggable Authentication Modules l ii libssl0.9.7 0.9.7e-3sarge4 SSL shared libraries ii netbase 4.21 Basic TCP/IP networking system ii openssl 0.9.7e-3sarge4 Secure Socket Layer (SSL) binary a -- debconf information: * uw-imapd/force_debconf_choice: false * uw-imapd/protocol: imap2, imaps -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
