Should I have a socket for imaps and or imap in
/var/imap/socket ? Currently I only have an lmtp
socket:
/var/imap/socket
catfish# ls -l
total 0
srwxrwxrwx 1 root other 0 Aug 22 22:31
lmtp
This is the error I am seeing in my log when I use
Navigator or Outlook to connect. The
chirs charter wrote
Should I have a socket for imaps and or imap in
/var/imap/socket ? Currently I only have an lmtp
socket:
/var/imap/socket
catfish# ls -l
total 0
srwxrwxrwx 1 root other 0 Aug 22 22:31
lmtp
No. imaps and imap use TCP sockets, not Unix sockets. So what
chirs charter wrote:
HEllo,
I uncomented the imaps entry in /etc/cyrus.conf. Now
if I telnet to localhost on port 993 I am prompted to
enter a PEM pass phrase. Somethings seems
misconfiugred no? If I enter the PEM passphrase for
the server's cert it fails. I know something is wrong
chirs charter wrote:
Ken,
Makes total sense thanks. Here is the putput using the
s_client to opensl:
catfish# openssl s_client -connect localhost:993 -cert
/var/imap/cert.pem
unable to get certificate from '/var/imap/cert.pem'
1853:error:0906D06C:PEM routines:PEM_read_bio:no start
Looks like an error in the opening dialogue?
catfish# openssl s_client -connect localhost:993
CONNECTED(0003)
1855:error:140770FC:SSL
routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_cln
t.c:460:
What do you think?
Thanks
--- Ken Murchison [EMAIL PROTECTED] wrote:
chirs charter
chirs charter wrote:
Looks like an error in the opening dialogue?
catfish# openssl s_client -connect localhost:993
CONNECTED(0003)
1855:error:140770FC:SSL
routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_cln
t.c:460:
What do you think?
Thanks
Don't know. This is beyond
HEllo,
I uncomented the imaps entry in /etc/cyrus.conf. Now
if I telnet to localhost on port 993 I am prompted to
enter a PEM pass phrase. Somethings seems
misconfiugred no? If I enter the PEM passphrase for
the server's cert it fails. I know something is wrong
here I am just unsure what. If you
Here are the entries for /var/log/imapd.log for telnet
localhost 993 transcript below:
Aug 22 20:41:15 catfish imapd[1568]: [ID 164529
local6.error] unable to get priv
ate key from '/var/imap/test.crt.pem'
Aug 22 20:41:15 catfish imapd[1568]: [ID 992616
local6.error] TLS engine: cannot
load
So run the following then:
openssl rsa -in file.key -out newfile.key
Does this pose a potential security threat though?
Also do I need inetd running ? Many of the HOW TOs
mention the presence of inetd but I am under the
impression that this is what the 'master' program's
responsibility is. I