Sean wrote:
> I haven't seen that error before, but from some research it looks like
> the connection did abort. It looks like it could be due to the fact
> that the mail client does not support ssl, you are forcing ssl
> connections and there is no security certificate for exim to use, or
> that the security cert is not correctly configured in exim.
>
> I don't suppose you could provide the full set of logs for that
> connection attempt to verify this?
>
>
> Sean
>
>
> On Wed, Sep 2, 2009 at 2:56 PM, eximmail<eximmail@???> wrote:
>
>> Andreas Metzler wrote:
>>
>>> Christian Schmidt <Christian.Schmidt@???> wrote:
>>>
>>>
>>>> eximmail, 01.09.2009 (d.m.y):
>>>>
>>>>
>>>
>>>>> I am trying to figure if I have TLS built in to my exim.
>>>>>
>>>>>
>>>
>>>> Just ask your exim binary:
>>>> ldd /path/to/your/exim/binary
>>>> And look if libssl or libgnutls appears in the output.
>>>>
>>>>
>>> That is just an indication. ldd follows indirect linking, i.e. if you
>>> built exim with postgreSQL support, you will find libssl in the ldd
>>> output no matter whether exim was built with TLS support, since libpq
>>> links against libssl.
>>> cu andreas
>>>
>>>
>> I think I just about got it the only problem I am having now is whoever
>> sends mail it tries to connect to ssl and not the normal channels and
>> all mail comes in with an ssl error of (SSL_accept):
>> error:00000000:lib(0):func(0):reason(0). I looks as if the ssl is
>> shutting down before completion?
>> --
>> ## List details at http://lists.exim.org/mailman/listinfo/exim-users
>> ## Exim details at http://www.exim.org/
>> ## Please use the Wiki with this list - http://wiki.exim.org/
>>
>>
>
>
This is what I was getting so I redid the cert file
2009-09-02 14:19:26 no host name found for IP address 200.159.32.78
2009-09-02 14:19:26 TLS error on connection from [200.159.32.78] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt): error:02001002:system library:fopen:No such file or directory
2009-09-02 14:19:32 no host name found for IP address 200.159.32.78
2009-09-02 14:19:32 TLS error on connection from [200.159.32.78] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt): error:02001002:system library:fopen:No such file or directory
2009-09-02 14:19:37 no host name found for IP address 200.159.32.78
2009-09-02 14:19:37 TLS error on connection from [200.159.32.78] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt): error:02001002:system library:fopen:No such file or directory
2009-09-02 14:20:40 TLS error on connection from 200-71-175-18.genericrev.telcel.net.ve [200.71.175.18] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt: error:02001002:system library:fopen:No such file or directory
2009-09-02 14:20:48 TLS error on connection from 200-71-175-18.genericrev.telcel.net.ve [200.71.175.18] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt): error:02001002:system library:fopen:No such file or directory
2009-09-02 14:20:55 TLS error on connection from 200-71-175-18.genericrev.telcel.net.ve [200.71.175.18] (SSL_CTX_use_certificate_chain_file file=/my/dir/exim.crt): error:02001002:system library:fopen:No such file or directory
After redoing the cert file this is what I get
2009-09-02 14:45:09 TLS error on connection from 0x535b1068.naenxx14.dynamic.dsl.tele.dk [83.91.16.104] (SSL_accept): error:00000000:lib(0):func(0):reason(0)
2009-09-02 14:46:53 TLS error on connection from 0x535b1068.naenxx14.dynamic.dsl.tele.dk [83.91.16.104] (SSL_accept): error:00000000:lib(0):func(0):reason(0)
2009-09-02 14:47:27 TLS error on connection from [67.196.40.111] (SSL_accept): error:00000000:lib(0):func(0):reason(0)
2009-09-02 14:47:33 TLS error on connection from 78-136-148-223.client.ufon.cz [78.136.148.223] (SSL_accept): error:00000000:lib(0):func(0):reason(0)
I am not sure if the last is caused by my cert, but the time out of the connection is most likely in my opinion.
I either need to find a log for ssl or create one.
