On Tue, Mar 20, 2001 at 12:59:53PM +0200, Panagiotis Drakopoulos wrote:
> Hi,
> Do the tests i made (see below) mean that i installed and configured secure imap
> and pop servers (openssl-0.9.6) properly.
Hmm, no.
> I still cannot connect to the server using netscape messenger or outlook if i check
> the programms option for secure
> connection.If i dont check this option i can connect and read mail from server at
> the secure ports 993,995.
> Is there something i'm missing?
Yes. Your pop3 and imap servers are listening in "normal" mode on these ports,
they must however listen in "SSL wrapper" mode. To achieve this, you must
either use stunnel or sslwrap or you must upgrade to the IMAP-2000 package
which natively supports SSL wrapping when using these port numbers.
Actually, when telnet succeeds, it does not work. When the setup is
correct, you should not see anything on the telnet port, as the client
is to start the SSL handshake immediately. You need to use e.g.
openssl s_client to test .
> wisdom.cti.gr# telnet wisdom.cti.gr 993
> Trying 150.140.14.40...
> Connected to wisdom.cti.gr.
> Escape character is '^]'.
> * OK wisdom IMAP4rev1 v11.241 server ready
This server is far to old to natively support SSL. It should look like
this :-)
* OK [CAPABILITY IMAP4 IMAP4REV1 STARTTLS LOGIN-REFERRALS AUTH=LOGIN] localhost
IMAP4rev1 2000.287 at Tue, 20 Mar 2001 13:23:34 +0100 (MET)
Best regards,
Lutz
--
Lutz Jaenicke [EMAIL PROTECTED]
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
