Thanks for your reply Michael, here are the logs when I start popper:
====== Apr 7 14:19:59 memnoch popper[31472]: popper: Server: first fork(); child=31473; exiting [main.c:379] Apr 7 14:19:59 memnoch popper[31473]: popper: Server: child of first fork(); pid=31473 [main.c:384] Apr 7 14:19:59 memnoch popper[31473]: popper: Server: second fork(); child=31474; exiting [main.c:409] Apr 7 14:19:59 memnoch popper[31474]: popper: Server: child of second fork(); pid=31474 [main.c:414] Apr 7 14:19:59 memnoch popper[31474]: calling chdir() [main.c:427] Apr 7 14:19:59 memnoch popper[31474]: closing file descs 1024 to 0 [main.c:449] Apr 7 14:19:59 memnoch popper[31474]: opened stdin=0; stdout=1 stderr=2; i=0; rslt=2; msg_out=0x8070a28 [main.c:474] Apr 7 14:19:59 memnoch popper[31474]: opened stream socket; sockfd = 5 [main.c:486] Apr 7 14:19:59 memnoch popper[31474]: set stream socket options; sockfd = 5 [main.c:503] Apr 7 14:19:59 memnoch popper[31474]: did bind on stream socket; sockfd = 5 [main.c:526] Apr 7 14:20:00 memnoch popper[31474]: popper: Server: listening on 0.0.0.0:110 [main.c:534] Apr 7 14:20:00 memnoch popper[31474]: listening using socket fd 5 [main.c:538] Apr 7 14:20:00 memnoch popper[31474]: set fd 5 non-blocking (0x802) [main.c:552] ===== there is nothing about ssl, and as we can see popper bind on port 110. If I want to test a ssl connection I have to force outlook to make ssl connection on port 110. here are the logs, sorry it's a little ugly ========== Apr 7 14:25:34 memnoch popper[31474]: accept=6; sockfd=5; clilen=16; cli_addr=192.168.2.3:1256 [main.c:612] Apr 7 14:25:34 memnoch popper[31474]: new connection; fd=6 [main.c:899] Apr 7 14:25:34 memnoch popper[31474]: newsockfd (6) flags: 0x2 [main.c:907] Apr 7 14:25:34 memnoch popper[31474]: set fd 6 blocking (0x2) [main.c:913] Apr 7 14:25:34 memnoch popper[31474]: forked() for new connection; pid=31483 [main.c:972] Apr 7 14:25:34 memnoch popper[31483]: new child for connection [main.c:923] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: Debugging turned on (-d) [pop_init.c:711] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: tls-support=2 (-l) [pop_init.c:784] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: Will generate stats records (-s) [pop_init.c:846] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: server mode is the default (-S) [pop_init.c:851] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: timeout = 60 (-T) [pop_init.c:881] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: Processing config file '/etc/mail/pop/qpopper.config'; CallTime=1 [pop_config.c:1289] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: ...read line 1 (32): set tls-support = alternate-port [pop_config.c:1325] Apr 7 14:25:34 memnoch /usr/local/sbin/popper[31483]: Set tls-support to alternate-port (1) [pop_config.c:1206] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...read line 2 (51): set tls-server-cert-file = /etc/mail/certs/cert.pem [pop_config.c:1325] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: Set tls-server-cert-file to "/etc/mail/certs/cert.pem" [pop_config.c:1222] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: Finished processing config file '/etc/mail/pop/qpopper.config'; rslt=1 [pop_config.c:1473] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) Servicing request from "pandora.cronos.home" at 192.168.2.3 [pop_init.c:1173] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: before TLS; tls_support==1 [popper.c:180] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...Initializing OpenSSL library [pop_tls_openssl.c:224] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...have /dev/urandom; skipping PRNG seeding [pop_tls_openssl.c:282] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...setting method to SSLv23_server_method [pop_tls_openssl.c:306] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...allocating OpenSSL context [pop_tls_openssl.c:336] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...setting certificate file /etc/mail/certs/cert.pem [pop_tls_openssl.c:346] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...private key file not set; assuming private key is in cert (/etc/mail/certs/cert.pem) [pop_tls_openssl.c:362] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...setting private key file /etc/mail/certs/cert.pem [pop_tls_openssl.c:367] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...verifying private key against certificate [pop_tls_openssl.c:381] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...(tls_cipher_list not specified) [pop_tls_openssl.c:408] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...allocating OpenSSL connection [pop_tls_openssl.c:419] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...setting input (0) and output (0) file descriptors [pop_tls_openssl.c:429] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: ...successfully completed OpenSSL initialization [pop_tls_openssl.c:449] Apr 7 14:25:35 memnoch /usr/local/sbin/popper[31483]: TLS Init [popper.c:202] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: Attempting OpenSSL handshake [pop_tls_openssl.c:498] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: tls accept returned 1 [pop_tls_openssl.c:501] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:507] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) TLSv1/SSLv3 handshake with client at pandora.cronos.home (192.168.2.3); new session-id; cipher: RC4-MD5 (RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 ), 128 bits [pop_tls_openssl.c:514] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) TLS OK [popper.c:218] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: TLS Done [popper.c:221] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) Intro [popper.c:247] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: +OK ready [popper.c:255] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: tls write start 13 0xbfffd75c [pop_tls_openssl.c:674] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: tls write 13 2b 4f [pop_tls_openssl.c:677] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:681] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: Qpopper ready for input from (null) at pandora.cronos.home [192.168.2.3] [popper.c:292] Apr 7 14:25:36 memnoch /usr/local/sbin/popper[31483]: tls read start 2048 0xbfffcf48 [pop_tls_openssl.c:579] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: tls read 13 55 53 [pop_tls_openssl.c:582] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:586] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: Received (11): "USER acu-ml" [pop_get_command.c:105] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: home (9): '/no/where' [pop_user.c:217] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: +OK Password required for acu-ml. [pop_user.c:431] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: tls write start 35 0xbfffd75c [pop_tls_openssl.c:674] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: tls write 35 2b 4f [pop_tls_openssl.c:677] Apr 7 14:25:38 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:681] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: user returned 1; CurrentState now auth2 [popper.c:336] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Qpopper ready for input from acu-ml at pandora.cronos.home [192.168.2.3] [popper.c:292] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: tls read start 2048 0xbfffcf48 [pop_tls_openssl.c:579] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: tls read 16 50 41 [pop_tls_openssl.c:582] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:586] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Received: "pass xxxxxxxxx" [pop_get_command.c:96] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: ...built: (39) '/var/mail/' [genpath.c:158] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: genpath Spool (1) [hash: 0; home: NULL] for user acu-ml returning /var/mail/acu-ml [genpath.c:229] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: ...built: (39) '/var/mail/' [genpath.c:158] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: genpath .pop (2) [hash: 0; home: NULL] for user acu-ml returning /var/mail/.acu-ml.pop [genpath.c:229] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Temporary maildrop name: '/var/mail/.acu-ml.pop' [pop_dropcopy.c:1255] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: uid = 506, gid = 12, euid = 506, egid = 12 [pop_dropcopy.c:1481] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Opened temp drop /var/mail/.acu-ml.pop (6) [pop_dropcopy.c:1501] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Set p->drop to stream for 6 [pop_dropcopy.c:1585] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Getting mail lock [pop_dropcopy.c:1625] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: successfully opened (exclusive) lock /var/mail/acu-ml.lock [maillock.c:477] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: maillock() on file /var/mail/acu-ml (/var/mail/acu-ml.lock) [pop_dropcopy.c:1631] returning 0 (1 attempt(s)) [maillock.c:549] Apr 7 14:25:39 memnoch /usr/local/sbin/popper[31483]: Opened spool /var/mail/acu-ml (7) [pop_dropcopy.c:1663] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: Server mode: set p->hold to temp drop (6) and p->drop to stream for spool (7) [pop_dropcopy.c:1712] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: ...built: (39) '/var/mail/' [genpath.c:158] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: genpath .cache (6) [hash: 0; home: NULL] for user acu-ml returning /var/mail/.acu-ml.cache [genpath.c:229] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: Read cache file "/var/mail/.acu-ml.cache"; msg_count=0; toc_size=0; drop_size=0; spool_end=0; first_msg_hidden=0; visible_msg_count=0 [pop_cache.c:424] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: Temp drop contains 0 (0 visible) messages in 0 octets [pop_dropcopy.c:1790] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: mailunlock() called [pop_dropcopy.c:1807] for /var/mail/acu-ml.lock [maillock.c:579] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) POP login by user "acu-ml" at (pandora.cronos.home) 192.168.2.3 [pop_log.c:244] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: +OK acu-ml has 0 visible messages (0 hidden) in 0 octets. [pop_pass.c:1446] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: tls write start 59 0xbfffd75c [pop_tls_openssl.c:674] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: tls write 59 2b 4f [pop_tls_openssl.c:677] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:681] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: pass returned 1; CurrentState now trans [popper.c:336] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: Qpopper ready for input from acu-ml at pandora.cronos.home [192.168.2.3] [popper.c:292] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: tls read start 2048 0xbfffcf48 [pop_tls_openssl.c:579] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: tls read 6 53 54 [pop_tls_openssl.c:582] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:586] Apr 7 14:25:40 memnoch /usr/local/sbin/popper[31483]: Received (4): "STAT" [pop_get_command.c:105] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: 0 visible message(s) (0 octets). [pop_stat.c:37] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: +OK 0 0 [pop_stat.c:41] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: tls write start 9 0xbfffd75c [pop_tls_openssl.c:674] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: tls write 9 2b 4f [pop_tls_openssl.c:677] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:681] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: stat returned 1; CurrentState now trans [popper.c:336] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Qpopper ready for input from acu-ml at pandora.cronos.home [192.168.2.3] [popper.c:292] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: tls read start 2048 0xbfffcf48 [pop_tls_openssl.c:579] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: tls read 6 51 55 [pop_tls_openssl.c:582] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:586] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Received (4): "QUIT" [pop_get_command.c:105] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Performing maildrop update... [pop_updt.c:292] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Checking to see if all messages were deleted [pop_updt.c:293] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Stats: acu-ml 0 0 0 0 pandora.cronos.home 192.168.2.3 [pop_updt.c:296] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: ...built: (39) '/var/mail/' [genpath.c:158] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: genpath .cache (6) [hash: 0; home: NULL] for user acu-ml returning /var/mail/.acu-ml.cache [genpath.c:229] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Wrote cache file "/var/mail/.acu-ml.cache"; msg_count=0; toc_size=0; drop_size=0; spool_end=0 [pop_cache.c:245] Apr 7 14:25:41 memnoch /usr/local/sbin/popper[31483]: Unlinked [pop_updt.c:311] temp drop (/var/mail/.acu-ml.pop) [pop_updt.c:145] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: Running in server mode; spool not changed; deleting temp drop [pop_updt.c:312] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: quit returned 1; CurrentState now halt [popper.c:336] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: +OK Pop server at memnoch.cronos.home signing off. [popper.c:360] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: tls write start 52 0xbfffd75c [pop_tls_openssl.c:674] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: tls write 52 2b 4f [pop_tls_openssl.c:677] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_NONE (0) [pop_tls_openssl.c:681] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: tls shutdown returned 0 [pop_tls_openssl.c:763] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: SSL_get_error says SSL_ERROR_SYSCALL (5) [pop_tls_openssl.c:766] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: TLS shutdown Error [pop_tls_openssl.c:789] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: freeing m_OpenSSLconn [pop_tls_openssl.c:811] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: freeing m_OpenSSLctx [pop_tls_openssl.c:817] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: openssl_shutdown returning -1 [pop_tls_openssl.c:822] Apr 7 14:25:42 memnoch /usr/local/sbin/popper[31483]: (v4.0.4fc3) Ending request from "acu-ml" at (pandora.cronos.home) 192.168.2.3 [popper.c:377] Apr 7 14:25:42 memnoch popper[31483]: exiting after Qpopper returned [main.c:952] =================== Well as we can see: 1) The ssl part worked perfectly, so I assume that configure found openssl-libraries successfully 2) The pop3 client (outlook express) did not report any error. 3) popper understood that he should use alternate port "Set tls-support to alternate-port " But popper still bind on port 110 instead of 995 . :o(( I tried to put: set clear-text-password = ssl set tls-version = all But the problem persist. Which version are you using Michael ? Does popper bind on port 995 with you ?? Thanks for all. -- Mikael Chambon || Paris France mikael (at) cronos.org mikael (at) nerim.net PGP key http://www.cronos.org/mikael/pgp/key.txt
