RE: [vchkpw] Re: Qmail-pop3d (with or without ssl) and open-smtp

Sat, 17 Jan 2004 03:28:41 -0800 

Peter Palmreuther wrote:
> Hello Andrea,
> Reading your dumps a having a look in vpopmail sources I get
> the impression when you're in SSL mode the environment
> variable TCPREMOTEIP seems not to be set. I don't know which
> vpopmail version you're actually using, so I don't know if
> there are other versions when vpopmail does neither read nor
> write open-smtp, but this could be /one/ reason.

Well, my version is 5.4.0-rc1.
Now my runscript is:

#!/bin/sh
CAFILE="/usr/local/ssl/certs/pop3s.cert"
CERTFILE="/usr/local/ssl/certs/pop3s.cert"
KEYFILE="/usr/local/ssl/certs/pop3s.key"
DHFILE="/usr/local/ssl/certs/dh1024.pem"
export CAFILE CERTFILE KEYFILE DHFILE
exec /usr/local/bin/softlimit -m 3800000 \
/usr/local/bin/sslserver -v -R -H -l 0 0 996 \ echo "IP: " $TCPREMOTEIP 2>&1

I've tried on the same terminal, with 'openssl s_client -connect
127.0.0.1:996', and with 'openssl s_client -connect 'server's_public_IP:996'
from a remote terminal, this is my output:

observe# openssl s_client -connect 127.0.0.1:996
CONNECTED(00000004)
<cut>
---
New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 1024 bit
SSL-Session:
    Protocol  : TLSv1
    Cipher    : DHE-RSA-AES256-SHA
    Session-ID:
564576620745756255D48121BE33D73A63D01F365BC3610D3ECF008EE129C3E3
    Session-ID-ctx: 
    Master-Key:
ACA2871B120D636E91035E8C61CBEF378BFB241D454CFAD088B2DB5217A81E2747D881946AB1
06CBB564E3F3590FEDF4
    Key-Arg   : None
    Start Time: 1074331971
    Timeout   : 300 (sec)
    Verify return code: 18 (self signed certificate)
---
read:errno=0
observe#

TiG4:~ andrea$ openssl s_client -connect <server's_public_ip>:996
CONNECTED(00000003)
<cut>
---
New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 1024 bit
SSL-Session:
    Protocol  : TLSv1
    Cipher    : DHE-RSA-AES256-SHA
    Session-ID:
EAB08452498F726CC32FE84EEE09E8F2DA2273D42ED6D70382B7D31A980CECEE
    Session-ID-ctx: 
    Master-Key:
F044319BCC17B487ED2E457F7305F0F1FD6267AC7385A02DFAFDC522B67CDDC2760BD9F7C5E1
2931106380FD54054F30
    Key-Arg   : None
    Start Time: 1074335061
    Timeout   : 300 (sec)
    Verify return code: 18 (self signed certificate)
---
read:errno=0
TiG4:~ andrea$ 

Well, I think you've hit the problem.
But what I've to do to resolve it?

Thanks for all
Regards
Andrea

Reply via email to