Fatal error: tls_start_servertls() failed. (fwd)

Mike Allen mallen at familyradio.org
Thu Aug 21 14:00:27 EDT 2003


Thanks for your help and insight.  I have attached my imapd.conf file
with the values I currently use.  SSL/TLS still does not let me
communicate with port 993. imtest will not run to completion.
What am I missing?

Thanks again for your help.

Mike Allen

---------- Forwarded message ----------
Date: Wed, 20 Aug 2003 20:55:57 -0400
From: Ken Murchison <ken at oceana.com>
To: Mike Allen <mallen at familyradio.org>
Cc: info-cyrus at lists.andrew.cmu.edu
Subject: Re: Fatal error: tls_start_servertls() failed.

Mike Allen wrote:

> I get the above Fatal error when I try to do anything after the
> following command:
>     telnet localhost imaps
> Would someone please direct me as to how to debug this?  Thanks in
> advance for your help.

First or all, telneting to port 993 won't get you any visible data,
since SSL/TLS is negotiated before any IMAP protocol data is exchanged.
  If you really want to test imaps, then you should use imtest (included
with Cyrus) or OpenSSL's s_client.

The error you are seeing most likely means that you haven't configured
Cyrus for SSL/TLS (tls_* options in imapd.conf).

Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp
-------------- next part --------------
# Thie file was typed in by hand to eliminate non-alphanumeric
# characters within it.
configdirectory: /var/imap
defaultpartition: default
partition-default: /var/spool/imap
umask: 077
allowanonymouslogin: no
allowplaintext: yes
quotawarn: 90
imapdresponse: yes
admins: cyrus
autocreatequota: 50000
duplicatesuppression: yes
mailnotifier: <no default>
sieveusehomedir: false
sendmail: /usr/sbin/sendmail
postmaster: postmaster
sieve_maxscriptsize: 32
sieve_maxscripts: 5
sasl_maximum_layer: 256
sasl_minimum_layer: 0
sasl_pwcheck_method: sasldb2
sasl_auto_transition: no
#sasl_opiekeys: /etc/opiekeys
tls_cert_file: /usr/local/ssl/global.crt
tls_key_file: /usr/local/ssl/global.key
tls_imap_cert_file: /usr/local/ssl/global.crt
tls_imap_key_file: /usr/local/ssl/global.key
#tls_lmtp_cert_file: /usr/local/etc/ssl/global.crt
#tls_lmtp_key_file: /usr/local/etc/ssl/global.key
tls_session_timeout: 1440
#tls_ca_file: global.crt
#tls_ca_path: /usr/local/etc/ssl
deleteright: c
lmtpsocket: /var/imap/socket/lmtp
idlesocket: /var/imap/socket/idle
notifysocket: /var/imap/socket/notify

More information about the Info-cyrus mailing list