imaps TLS problem
Steve Huston
huston at astro.Princeton.EDU
Wed Feb 5 11:00:31 EST 2003
On Wed, 5 Feb 2003, RJ45 wrote:
> the problem is with outlook clients, Netscape works fine with it.
> When a Outlook client is accessing to imaps service, cyrus closes
> connection and here is hte error:
> Feb 5 15:37:50 venus imapd[364]: [ID 798856 local6.notice] imaps TLS
> negotiation failed: xiexie.something.it[192.84.x.y]
> Feb 5 15:37:50 venus imapd[364]: [ID 637875 local6.error] Fatal
> error: tls_start_servertls() failed
I had the same problem when Cyrus didn't like the tls_ca_file I gave it.
Don't know why, but this is the only way it would surface: SSL connections
worked fine from the start, but connecting to 143 and using "STARTTLS" would
fail every time.
My suggestion is to either remove the line if you're not using client-side
certs, or put *only* the CA's cert that signs the client certs in that file.
Using RedHat 8.0's /usr/share/ssl/certs/ca-bundle.crt file caused the problem.
--
Steve Huston - Unix Systems Administrator, Dept. of Astrophysical Sciences
Princeton University | ICBM Address: 40.346525 -74.651285
126 Peyton Hall |"On my ship, the Rocinante, wheeling through
Princeton, NJ 08544 | the galaxies; headed for the heart of Cygnus,
(609) 258-7375 | headlong into mystery." -Rush, 'Cygnus X-1'
More information about the Info-cyrus
mailing list