-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 25.07.2014 um 15:33 schrieb Christian Mack: > Am 2014-07-25 15:08, schrieb Rasca Gmelch: >> Hi Christian, >> >> Am 25.07.2014 um 14:19 schrieb Christian Mack: >>> Hello Rasca Gmelch >> >>> Am 2014-07-23 14:38, schrieb Rasca Gmelch: >>>> >>>> sogo is installed under debian 7. I put the intermediate cert >>>> to /etc/ssl/certs and checked that also the toplevel CA cert >>>> is included in /etc/ssl/certs/. And did a "c_rehash". >>>> >> >>> On Debian and Ubuntu systems you should use >>> update-ca-certificates (packages ca-certificates). IIRC there >>> are 2 different hashing algorithms used nowaday. >>> update-ca-certificates will pick both or the correct one for >>> your system. >> >>> I don't know if that fixes your problem though. >> >> Thank you for these notes. But I think using the c_rehash >> command should also be fine, because it creates two hash links >> for every certificate. >> >> >>>> But it didn't help. It looks like debuging SSL in sogo is >>>> nearly imposibble. No usefull messages in the logfiles - I >>>> had the same bad experiance with openldap. >>>> >> >>> What does your sieve server say on this STARTTLS sessions? >> >> I see in the sogo logfile: >> >> Mar 28 15:00:21 sogod [12226]: <0x0x7f0d49d18fa0[NGSieveClient]> >> TLS started successfully. >> >> On the cyrus server logfile I see: >> >> cyrus/sieve[26762]: starttls: TLSv1 with cipher AES256-SHA >> (256/256 bits new) no authentication >> > > So STARTTLS is working fine. Which error do you get afterwards on > the sieve server?
On both sides nothing happens and the webbrowser window for the sogo preferences stays empty. After some seconds a timeout occures and I see in the logfile of the sogo server: sogod [28461]: [WARN] <0x0x7fe5ed343180[WOWatchDogChild]> pid 28479 has been hanging in the same request for 1 minutes [..] sogod [28461]: [WARN] <0x0x7fe5ed343180[WOWatchDogChild]> pid 28479 has been hanging in the same request for 7 minutes The web client (firefox) returns an error - here it's a proxy error because we have an apache reverse proxy in front of the sogo service: Proxy Error: Reason: Error reading from remote server The sieve server does not give any additional lines in the logfile. Regards, Rasca - -- Rasca Gmelch | IT | JabberID: [email protected] OpenPGP Key ID: 8168E925, Key server: pool.sks-keyservers.net Fingerprint 1FD0 3199 13B7 7ADC 5DF1 A8EF FA4C 4AC0 8168 E925 ART+COM AG | Kleiststr. 23-26 | 10787 Berlin | Germany Fon: +49.30.21001-466 | Fax: +49.30.21001-555 http://www.artcom.de/ HRB 68308 | Amtsgericht Charlottenburg Vorstand: Andreas Wiek, Prof. Joachim Sauter Aufsichtsratsvorsitzender: Volker Tietgens USt-IdNr.: DE811998328 -----BEGIN PGP SIGNATURE----- iQIcBAEBAgAGBQJT0mAdAAoJEPpMSsCBaOklH0gQAIrFbeTIFCCQM4PG68ILSW/9 +Ojw/Mjfmrhbuugb78Rn8GCRjq90QSNJctczXi+DQm8cKt44oexD1RkVzgXmQ5ZP af2JyX8t7Ra4hCybLEAioF6I8izuKZYv8jveVVKSLdrJ86p76zFCJpUbfb8uLcCF hD0Eaom1h8iR1TKySNX9/IRabV0GbRPhaztNxyf9RgbDsGLrDOCuM65aMPy94G2a D4n2e2B6N1mfoNzXFo7Nw9u0ZGH1+pIEMsKCbP4VeXxx3eW928iswrUW3KcVP8Rs DYxODN6Q1rggjIwdvLokn5Ib44XopYfLvx9JiE5bo5FnhLbME2DE7L+iDPT1TWlk Dwpuv2NwqWO7qNPZ77xyPWQhzYS8DamT7O+aw2kMtnbkL7rt9B0b3IKg4AeIQN6p JXhvBdIFMLm/aVCuitbacUc3Zdu5M8uskpbn6R+AU3foKR7ddJXbWZqJND1LulCG j4hznc4jWYOh97p0dsn5P2C89djQ4ZmzYV9UL/Gty+Cgl4zdA1s0gdWr/zpqxaIS oavq+a46Af2WJ3xb4QrQhFx4DYrN2pmWAACHJ5SnAviE9JKr55PEWfgbhs1PJWhA iikZ20zlR8Z5kJW+VsPFihFVZ3qEuAsatyZo5P1zZ5THk5BIY/2XWPVi52SUsztb CSXThzeUAUlhRUrqsRsG =t2r4 -----END PGP SIGNATURE----- -- [email protected] https://inverse.ca/sogo/lists
