I'm trying to get TLS working. Using "-l 1", if I don't switch to TLS
mode, I get a message in the log saying that SSL_shutdown failed.
It appears from the OpenSSL documetation that SSL_shutdown should only
be called if an SSL connection is actually established, but not if only
SSL_init was called. You can check p->tls_started to see whether this
is necessary, as this is set if pop_tls_handshake was successful.
For those interested in trying this out, using the OpenSSL package
(http://www.openssl.org): I created a self-signed cert using "CA.pl
-newcert", moved the new file newcert.pem to /etc/mail/certs, and
removed the passphrase using "openssl rsa -in newcert.pem -out
qpopper.pem". I then cut the certificate section from newcert.pem and
pasted it into qpopper.pem. I created /etc/mail/qpopper.conf containing
"set tls-server-cert-file = /etc/mail/certs/qpopper.pem". I changed the
qpopper command to add "-l 1 -f /etc/mail/qpopper.conf".
Ken
mailto:[EMAIL PROTECTED]
http://www.sewingwitch.com/ken/
[If answering a mailing list posting, please don't cc me your reply. I'll take my
answer on the list.]
