At 7:57 PM -0700 7/4/02, deimios wrote: > I don't know if this is a Eudora 5.1.1 problem or a qpopper 4.0.4 problem. > > I have compiled qpoper 4.0.4 with the following configuration lines: > > ./configure --enable-debugging --with-openssl=/usr/local/ssl --enable-timing > > my configuration file reads as follows: > > set clear-text-password = default > set tls-support = stls > set tls-version = SSLv23 > set tls-server-cert-file = /etc/mail/certs/signed_cert.pem > set tls-private-key-file = /etc/mail/certs/cert.pem > set timing = true > set chunky-writes = tls > > I have qpopper running out of inetd with the following: > pop3 stream tcp nowait root > /usr/local/sbin/popper qpopper -R -s -f /etc/qpopper.config > pop3s stream tcp nowait root > /usr/local/sbin/popper qpopper -R -p 2 -s -f /etc/mail/pop.options > > > the pop3s works perfectly with Outlook but also will not work when > Eudora is set to Require: Alternate-Port > > The pop3s configuration file is as follows: > set tls-private-key-file = /etc/mail/certs/cert.pem > set tls-server-cert-file = /etc/mail/certs/signed_cert.pem > set tls-support = stls
Delete this line (likely not causing a problem, but it is confusing). > set log-facility = local0 > set tls-support = alternate-port > set clear-text-password = tls > set chunky-writes = tls > > > Here's the issue and this appears to only be with Eudroa, I get the > following message: > > Jul 4 19:51:49 macha qpopper[27967]: (v4.0.4) TLSv1/SSLv3 > handshake with client at *.*.*.* (*.*.*.*); new session-id; cipher: > DES-CBC3-SHA (DES-CBC3-SHA SSLv3 Kx=RSA Au=RSA Enc=3DES(168) > Mac=SHA1), 168 bits [pop_tls_openssl.c:514] > Jul 4 19:51:49 macha qpopper[27967]: Possible probe of account * > from host *.*.*.* (*.*.*.*) [pop_quit.c:29] > > I have read the qpopper faq and this says that this is when the > client sents a quit to the server. However this is inhibiting > e-mail checking. > > I did try and compile with apop. The results where the same when I > set it to STARTTLS and cleartext. However I could log in with > STARTTLE and apop. Some of my users can't use apop but can use > SSL.... > > Any insight or points to the correct documentation would be helpful I'd suggest getting more detailed server traces, and also Eudora traces. To enable tracing in Qpopper: Add 'set debug' or 'set tracefile = <tracefile>' to either a global or user-specific configuration file. This causes detailed tracing to be written to the syslog or to the file specified as 'tracefile'. To enable tracing in Eudora: On Macs, drag the "esoteric settings" plug-in (which comes with Eudora) from the "Extra Plugins" folder to the "Eudora Stuff" folder. Quit and restart Eudora. Then in your Eudora settings go to "Logging". Check "all bytes transferred". On Windows, move the "esoteric.epi" plug-in (which comes with Eudora) from the "extrastuff" folder to the same folder as the "eudora.exe" file. Quit and relaunch Eudora. Then in your Eudora settings go to "Logging". Check "all bytes sent" and "all bytes received".
