[Dovecot] ssl cert for mail server

2012-09-19 Thread cc maco young 
for testing a new ssl cert.  it works ok for browsers, but

  openssl s_client -crlf -connect ms1.trailsandtribulations.net:443

= verify error:num=19:self signed certificate in certificate chain

is this ssl cert - as it's constructed - is ok for mail clients?  (realize
needs to be on mail port etc - right now talking about the cert itself.)
 have had problems with thunderbird, and was wondering if this might be
part of the problem.

Re: [Dovecot] thunderbird not connecting

2012-09-05 Thread cc maco young 
On Wed, Sep 5, 2012 at 12:02 AM, Stan Hoeppner s...@hardwarefreak.comwrote:

 On 9/3/2012 11:21 PM, cc young wrote:
  cannot get TB to recognize either pop3/s or imap/s server
 
  can connect just fine with:
 
  openssl s_client -connect ms1.myserver.net:993
  . login ...
 
  but trying with TB /var/log/mail.log gets:
 
  dovecot: pop3-login: Aborted login (no auth attempts):
 rip=223.205.150.234,
  lip=xxx.xx.xx.xx
  dovecot: imap-login: Aborted login (no auth attempts):
 rip=223.205.150.234,
  lip=xxx.xx.xx.xx

 What does TB activity manager say?


Activity Manager is blank

as an update, went to Claws email client.  it had enough feedback and  gave
me enough ways to tweak - got everything going.

went back to TB.  recognized server, but no username/password.  perhaps
it's not letting the full email - which is the user name - through.  but
who knows?  no feedback.

Re: [Dovecot] thunderbird not connecting

2012-09-05 Thread cc maco young 
On Wed, Sep 5, 2012 at 6:02 PM, Charles Marcus cmar...@media-brokers.comwrote:

 On 2012-09-05 6:23 AM, cc maco young bangkokm...@gmail.com wrote:

 On Wed, Sep 5, 2012 at 12:02 AM, Stan 
 Hoeppnerstan@hardwarefreak.**coms...@hardwarefreak.com
 wrote:

 What does TB activity manager say?


  Activity Manager is blank

 as an update, went to Claws email client.  it had enough feedback and
  gave
 me enough ways to tweak - got everything going.

 went back to TB.  recognized server, but no username/password.  perhaps
 it's not letting the full email - which is the user name - through.  but
 who knows?  no feedback.


 You're looking at the wrong end.

 You need to be looking at your SERVER logs, not the Clients.


yes, you are right.  will get back.

[Dovecot] problems with ssl cert

2012-09-04 Thread cc maco young 
in conf.d/10-ssl.conf:

ssl = yes
ssl_cert = /etc/ssl/certs/ms1xxx.net.crt
ssl_key = /etc/ssl/private/ms1.xxx.net.key

when try to set up an account in thrunderbird, get /var/log/mail.log:

imap-login: Disconnected (no auth attempts): rip=223.205.150.234,
lip=xx.xx.xx.xx, TLS: SSL_read() failed: error:14094416:SSL
routines:SSL3_READ_BYTES:sslv3 alert certificate unknown: SSL alert number

openssl s_client -connect mail.myserver.com:993 - successful

using the same cert in gning / chrome is successful, so think the cert is ok