Help...
I'm attempting to get either 4.0.5 or 4.0.6b3 to work with OpenSSL, on Solaris 9. I built the code with "--with-openssl=/opt/openssl", where my openssl code is installed. The code compiled and loaded with no complaints. I've got my certs in place and they work (I use IMAP too so I know this).
I configured the qpopper.config file with:
set clear-text-password = never set tls-support = stls set tls-server-cert-file = /opt/openssl/ssl/certs/mail-hub.cert
Looks like you're not telling it where to find the private key. May not be the only issue, but it's one issue.
set tls-workarounds = true set timing = true
Running the code in debug mode, telnetting to port 110, and entering:
Before issuing a USER command, issue a CAPA command and see what's listed. Clients will do this and then issue an STLS command if the CAPA said it was available. Once you've logged in, it's too late to protect the password.
Your config above indicated clear-text-password never, so don't expect much with your test below.
user testuser pass testpass
I see in my debug trace-file:
Dec 29 16:04:44.563 2004 [14245] before TLS; tls_support==0 [popper.c:181] Dec 29 16:04:44.563 2004 Dec 29 16:04:44.563 2004 [14245] Skipped TLS Init [popper.c:205]
right up at the top, before the the user and passwd info exchange even happens. Hunh?? Why does the "if ( p.tls_support != QPOP_TLS_NONE )" test in popper.c seem to fail? What have I missed?
Jeff Earickson Colby College
