Use only login and plain
On Sep 1, 2021, 8:30 PM, at 8:30 PM, Jeff Koch <[email protected]> wrote: >Hi Eric: > >Here's what I get - BTW - I did see a reference in a forum post that >AUTH=DIGEST-MD5 should be removed from dovecot > >SSL-Session: > Protocol : TLSv1.2 > Cipher : ECDHE-RSA-AES256-GCM-SHA384 > Session-ID: >611DF740642D8DD1BED7CF03AF5C9CB6930406E3BA4D76A1BBC25A1275B1B9AF > Session-ID-ctx: > Master-Key: >BA0399E80DE9DF60F0B90CFBE2B6C58438AB03DB427ECFE233A062DBDEBD7237824AAF8CB6666D445AEE22E184F863A6 > Key-Arg : None > Krb5 Principal: None > PSK identity: None > PSK identity hint: None > TLS session ticket lifetime hint: 300 (seconds) > TLS session ticket: > 0000 - 8d f7 50 89 e0 14 cc 94-95 cf ab 4b af d9 a3 3f >..P........K...? > 0010 - a9 9e 48 2b 48 5d a4 a1-37 62 f4 ed 62 43 31 e4 >..H+H]..7b..bC1. > 0020 - 51 49 3a 3c 25 6a 22 8c-99 f0 60 bf d0 df b8 4c >QI:<%j"...`....L > 0030 - 22 e8 da 05 9e 4e ef f0-7c 16 ae c5 af 16 1e 01 >"....N..|....... > 0040 - 82 9a 62 79 93 0c 1b 73-bd b9 90 96 8e 5a 94 5d >..by...s.....Z.] > 0050 - d6 9b 84 d4 88 1d 81 41-7a 24 29 97 d9 0f c5 6f >.......Az$)....o > 0060 - b8 69 ed b8 28 ce 62 82-03 4e e8 05 fb 8d 85 ae >.i..(.b..N...... > 0070 - a5 21 9d 17 f7 1e f1 7e-14 75 4a 79 56 c7 f3 95 >.!.....~.uJyV... > 0080 - c3 bc 50 90 de b0 51 1b-48 1c 4f df 9a 58 0d 4b >..P...Q.H.O..X.K > 0090 - c1 42 cb 64 4f 6c e9 7b-d5 1d 4a 04 dd 89 2a 2d >.B.dOl.{..J...*- > > Start Time: 1630549460 > Timeout : 300 (sec) > Verify return code: 0 (ok) >--- >* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE >IDLE AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot >toaster ready. >a OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE >IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS >THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT >CHILDREN >NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH >ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE QUOTA] >Logged in >* BYE Logging out >a OK Logout completed (0.001 + 0.000 + 0.001 secs). >closed > > >On 9/1/2021 8:49 PM, Eric Broch wrote: >> >> Try this script (replace with relevant user, password, & host) from >> the command line of the server. It will yield what version of TLS >> you're running. >> >> <script> >> >> #!/bin/bash >> >> function imapscript () { >> echo "a login $1 $2" >> echo 'a logout' >> sleep 1 >> echo 'quit' >> } >> >> [email protected] >> pass=*********** >> host=mail.mydomain.com >> >> imapscript "$user" $pass | openssl s_client -crlf -connect $host:993 >> >> </script> >> >> On 9/1/2021 6:29 PM, Eric Broch wrote: >>> Does your web mail work? >>> On Sep 1, 2021, at 5:12 PM, Jeff Koch <[email protected] >>> <mailto:[email protected]>> wrote: >>> >>> Neither IMAP or IMAPS will connect - Jeff >>> >>> On 9/1/2021 6:16 PM, Eric Broch wrote: >>>> >>>> What protocol, IMAP, IMAPS, SMTPS...? >>>> >>>> On 9/1/2021 2:36 PM, Jeff Koch wrote: >>>>> >>>>> We have a customer trying to connect to his qmail-toaster >email >>>>> account using the MicroSoft Outlook app on an Android phone. >He >>>>> keeps getting bounced off with the message 'can't connect to >>>>> server' or 'can't login'. I did some research on the MS >forums >>>>> and apparently this Outlook app only connects with SSL (no >>>>> STARTTLS) and TLS 1.2 or higher. If the mailserver tries >>>>> anything else first the connection is dropped. >>>>> >>>>> Is there any known work-around or configuration adjustment >>>>> needed to get this Android Outlook app to work with the >toaster. >>>>> >>>>> We're running qmail-1.03-2.2.qt.cdb.el7.x86_64.rpm >>>>> >>>>> Thanks, Jeff >>>
