Re: [exim] SSL/TLS connections not possible (Urgent)

Top Page
Delete this message
Reply to this message
Author: Yves Goergen
Date:  
To: Nigel Metheringham
CC: exim-users, Sherzod Ruzmetov
Subject: Re: [exim] SSL/TLS connections not possible (Urgent)
On 17.05.2006 13:51 (+0100), Nigel Metheringham wrote:
> As root, try
>     /sbin/iptables -n -L


Says:
> iptables v1.2.11: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
> Perhaps iptables or your kernel needs to be upgraded.


Looks like disaabled.

> Additionally try telnet to port 465 and make sure something is listening
> there.


netcat says:
> dotforward.de [213.239.201.232] 465 (?) open
> sent 0, rcvd 0: NOTSOCK


Looks like open. And port 25 (for TLS) does work for non-TLS.

> So try running a daemon in debugging mode whilst attempting to connect
> to it and see if anything useful comes out of the log there.


Here's a part of it:
> 13408 SMTP<< STARTTLS
> 13408 tls_certificate file /path/to/my/cert
> 13408 tls_privatekey file /path/to/my/cert
> 13408 Initialized TLS
> 13408 host in tls_verify_hosts? no (option unset)
> 13408 host in tls_try_verify_hosts? no (option unset)
> 13408 SMTP>> 220 TLS go ahead
> 13408 Calling SSL_accept
> 13408 LOG: MAIN
> 13408 TLS error on connection from p54942341.dip0.t-ipconnect.de ([192.168.0.2]) [84.148.35.65] (SSL_accept): Not Implemented
> 13408 TLS failed to start

ASCII garbage in this line
> 13408 SMTP>> 554 Security failure
> PuTTYPuTTY


--
Yves Goergen "LonelyPixel" <nospam.list@???>
http://beta.unclassified.de – My web laboratory.