Cyrus imapd 2.2.8 and Outlook Express
Ken Murchison
ken at oceana.com
Fri Oct 15 09:39:31 EDT 2004
cyrus at rbaumann.net wrote:
> Hi all
>
> I have a very strange problem... I installed Cyrus imapd 2.2.8 and everything
> seems to work fine.
> I checked the setup (SSL) with
> imtest -m plain -u cyrus -a cyrus -s localhost
>
> works like a charm.
> Outlook works great, as well as other mail clients except Outlook Express.
> I can also connect via Outlook Express, get my messages and everything except
> listing all IMAP folders (IMAP folders -> Reset List). This will always show
> an error message. Down below you can see some details from
> the /var/log/imapd.log. As you can see, some TLS sessions do work, others fail
> (the one with the IMAP folders).
>
> Oct 14 22:06:27 mail imaps[13303]: starttls: TLSv1 with cipher RC4-MD5
> (128/128 bits reused) no authentication
> Oct 14 22:06:27 mail imaps[13304]: accepted connection
> Oct 14 22:06:27 mail imaps[13304]: TLS server engine: cannot load CA data
> Oct 14 22:06:27 mail imaps[13304]: starttls: TLSv1 with cipher RC4-MD5
> (128/128 bits reused) no authentication
> Oct 14 22:06:27 mail imaps[13303]: login: test.cablecom.ch [62.2.x.x] rbaumann
> plaintext+TLS User logged in
> Oct 14 22:06:27 mail imaps[13303]: open: user rbaumann opened INBOX
> Oct 14 22:06:28 mail master[13305]: about to exec /usr/cyrus/bin/imapd
> Oct 14 22:06:28 mail imaps[13305]: executed
> Oct 14 22:06:28 mail imaps[13305]: accepted connection
> Oct 14 22:06:28 mail imaps[13305]: TLS server engine: cannot load CA data
> Oct 14 22:06:28 mail imaps[13305]: starttls: TLSv1 with cipher RC4-MD5
> (128/128 bits reused) no authentication
> Oct 14 22:06:28 mail imaps[13305]: login: test.webcom.cablecom.ch [62.2.x.x]
> rbaumann plaintext+TLS User logged in
> Oct 14 22:06:28 mail imaps[13305]: seen_db: user rbaumann
> opened /var/imap/user/r/rbaumann.seen
> Oct 14 22:06:28 mail imaps[13305]: open: user rbaumann opened teambox._Erledigt
> Oct 14 22:06:29 mail imaps[13304]: login: test.cablecom.ch [62.2.x.x] rbaumann
> plaintext+TLS User logged in
> Oct 14 22:06:35 mail imaps[13303]: accepted connection
> Oct 14 22:06:35 mail imaps[13303]: imaps TLS negotiation failed:
> test.cablecom.ch [62.2.x.x]
> Oct 14 22:06:35 mail imaps[13303]: Fatal error: tls_start_servertls() failed
> Oct 14 22:06:35 mail master[13300]: process 13303 exited, status 75
> Oct 14 22:06:35 mail master[13300]: service imaps pid 13303 in BUSY state:
> terminated abnormally
> Oct 14 22:06:56 mail imaps[13305]: open: user rbaumann opened teambox.Baumann
>
> Does somebody have an idea?
Do subsequent connections work?
Off the top of my head, either Outlook is trying to reuse a TLS session
incorrectly (or the TLS caching code in Cyrus is broken), or your server
is running out of enough entropy (e.g. /dev/random, /dev/urandom, etc)
to initiate the TLS negotiation.
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
More information about the Info-cyrus
mailing list