-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 hi mitu,
fyi. after digging thru mozilla's bugzilla site, i find that, in ADDITION TO the default TBird config in prefs.js of: security.enable_tls default boolean true one has to ADD: mail.server.default.useTLS userset boolean true if you ask me, that is NOT very obvious ... :-{ anyway, NOW on TBird config'd as: Server Type: IMAP Mail Server Server Name: {mail.testdomain.com} Port: {993} Default: 993 [x] Use secure connection (SSL) [x] Use secure authentication i can connect to Cyrus port 993 (143 still does NOT 'work' ...), & i see in my cyrus log: Oct 9 11:23:14 devbox DMCYRUS/imaps[5576]: starttls: TLSv1 with cipher AES256-SHA (256/256 bits new) no authentication Oct 9 11:23:14 devbox DMCYRUS/imaps[5576]: login: mail.testdomain.com [10.0.0.6] [EMAIL PROTECTED] CRAM-MD5+TLS User logged in which, i think, is what i SHOULD be seeing strangely, i still do NOT see STARTTLS advertised in TBird's imap session protocol log: 39686656[514d090]: 25dde00:mail.testdomain.com:NA:CreateNewLineFromSocket: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE AUTH=PLAIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR LISTEXT LIST-SUBSCRIBED 39686656[514d090]: ReadNextLine [stream=514d3e8 nb=38 needmore=0] 39686656[514d090]: 25dde00:mail.testdomain.com:NA:CreateNewLineFromSocket: 1 OK Unknown Error Code: -1904809420 39686656[514d090]: 25dde00:mail.testdomain.com:NA:SendData: 2 authenticate CRAM-MD5 39686656[514d090]: ReadNextLine [stream=514d3e8 nb=56 needmore=0] 39686656[514d090]: 25dde00:mail.testdomain.com:NA:CreateNewLineFromSocket: + PDMyMzMzOTYyDUxNmM4NTZYWlsLm9wZW5leGVjLmNvbT4= 39686656[514d090]: 25dde00:mail.testdomain.com:NA:SendData: Ymxha2Vyc0BvcGVuZXhlYy5jb20gM2Q4ZNDgwOTY2OEBtYjk2ZjZjhlNjE1YmY= 39686656[514d090]: ReadNextLine [stream=514d3e8 nb=31 needmore=0] 39686656[514d090]: 25dde00:mail.testdomain.com:NA:CreateNewLineFromSocket: 2 OK Success (tls protection) why do i have this sneaking suspicion that TBird's STARTTLS implementation is not 100% ... ? richard -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (Darwin) iEYEAREDAAYFAkNJZPYACgkQGnqMy4gvZ6GfdQCfR2m8kuatoawVO8Ul2+vprwTx pR4AmQHbVz5pVZslps/mzvwzb90cwvVO =nuRJ -----END PGP SIGNATURE----- ---- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html