Hi,
I have a working mail server for imap+smtp that uses dovecot and postfix.
I want to add imaps+smtps support. Connection through imaps works, but smtps fails.
Here is what I currently have in my /var/log/maillog file;
From within Mail.app I ran the connection doctor I saw:
Which proves imaps works. By the way don't pay attention to the 2465 port it's to bypass my isp lock.
To test manual access to smtps I issued:
[cmd=]$ openssl s_client -connect my.server.ip.Address:2465[/cmd]
And I get the following message:
So it seems to work.
Any idea what could prevent smtps from working? Could it be the ssl certificate of postfix which I generated myself?
I'm sure there are millions of reasons, but I have a simple setup so it should be an easy issue to fix.
Thanks in advance for your support
I have a working mail server for imap+smtp that uses dovecot and postfix.
I want to add imaps+smtps support. Connection through imaps works, but smtps fails.
Here is what I currently have in my /var/log/maillog file;
Code:
SSL_accept error
From within Mail.app I ran the connection doctor I saw:
Code:
WROTE Sep 04 22:16:39.962 [kCFStreamSocketSecurityLevelNegotiatedSSL] -- host: xxx.xxx.xxx.xxx -- port:993 -- socket:0x795f380 --
thread:0x61d7040
3.15 LOGOUT
CONNECTED Sep 04 22:17:09.567 [kCFStreamSocketSecurityLevelNone] -- host: xxx.xxx.xxx.xxx -- port:2465 -- socket:0x7d1a370 --
thread:0x7d1cb70
Which proves imaps works. By the way don't pay attention to the 2465 port it's to bypass my isp lock.
To test manual access to smtps I issued:
[cmd=]$ openssl s_client -connect my.server.ip.Address:2465[/cmd]
And I get the following message:
Code:
CONNECTED(00000003)
depth=0 C = AU, ST = Some-State, O = Blabla, CN = mail.mysite.com
verify error:num=18:self signed certificate
verify return:1
depth=0 C = AU, ST = Some-State, O = Blabla, CN = mail.mysite.com
verify return:1
---
Certificate chain
0 s:/C=AU/ST=Some-State/O=Blabla/CN=mail.mysite.com
i:/C=AU/ST=Some-State/O=Blabla/CN=mail.mysite.com
---
Server certificate
-----BEGIN CERTIFICATE-----
blablabla
-----END CERTIFICATE-----
subject=/C=AU/ST=Some-State/O=Blabla/CN=mail.mysite.com
issuer=/C=AU/ST=Some-State/O=Blabla/CN=mail.mysite.com
---
No client certificate CA names sent
---
SSL handshake has read 1432 bytes and written 409 bytes
---
New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 1024 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : DHE-RSA-AES256-SHA
Session-ID: 1C9E2D01DDAEF3B49B4DEBA04F6B9BC45714B17DB75AA
Session-ID-ctx:
Master-Key: D5549E87AEA778AF74162A6C7C08FDDA6FDC0C8CBA78692DC0EB50D2B87B0771862708CB
Key-Arg : None
PSK identity: None
PSK identity hint: None
TLS session ticket:
0000 - 38 11 b6 1d 73 8b 0a 48-25 3a 7c c7 de ef 21 3a 8...s..H%:|...!:
Start Time: 1283631128
Timeout : 300 (sec)
Verify return code: 18 (self signed certificate)
---
220 mysite.com ESMTP Postfix
EHLO dude
250-mysite.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
Any idea what could prevent smtps from working? Could it be the ssl certificate of postfix which I generated myself?
I'm sure there are millions of reasons, but I have a simple setup so it should be an easy issue to fix.
Thanks in advance for your support