On Oct 8, 2007, at 3:08 AM, Paul J Stevens wrote:
stunnel references were removed from the dbmail init script quite
some time ago.
The reference still remaining in default/dbmail is defunct and
should/will be
removed.
so SSL_TRUE and PEM_FILE are defunct?
Removed them and restarted not sure it made much difference.
So, after finding some more nuggets of information this is where I am
to date.
This is what happens when I try to telnet to the imaps port:
2007.10.08 05:56:28 LOG5[5355:47656983060560]: stunnel 4.18 on x86_64-
pc-linux-gnu with OpenSSL 0.9.8c 05 Sep 2006
2007.10.08 05:56:28 LOG5[5355:47656983060560]: Threading:PTHREAD
SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP
2007.10.08 05:56:28 LOG6[5355:47656983060560]: file ulimit = 1024
(can be changed with 'ulimit -n')
2007.10.08 05:56:28 LOG6[5355:47656983060560]: poll() used - no
FD_SETSIZE limit for file descriptors
2007.10.08 05:56:28 LOG5[5355:47656983060560]: 500 clients allowed
2007.10.08 05:56:28 LOG7[5355:47656983060560]: FD 4 in non-blocking mode
2007.10.08 05:56:28 LOG7[5355:47656983060560]: FD 5 in non-blocking mode
2007.10.08 05:56:28 LOG7[5355:47656983060560]: FD 6 in non-blocking mode
2007.10.08 05:56:28 LOG7[5355:47656983060560]: SO_REUSEADDR option
set on accept socket
2007.10.08 05:56:28 LOG3[5355:47656983060560]: Error binding imaps to
0.0.0.0:993
2007.10.08 05:56:28 LOG3[5355:47656983060560]: bind: Address already
in use (98)
stunnel.conf (or at least the imaps part)
[imaps]
accept = 993
connect = 143
cert = /etc/ssl/certs/alpha.just-email.com.pem
key = /etc/ssl/certs/alpha.just-email.com.pem
session = 14400
TIMEOUTidle = 14400
Where I'm a little confused is I have both an inetd entry:
imaps stream tcp nowait root /usr/bin/stunnel4 stunnel4 /etc/stunnel/
stunnel.conf
and there's an option to run stunnel from init.d -- which fails when
I try to run it with an error that the port is already in use:
Restarting SSL tunnels: 2007.10.08 06:01:10 LOG7
[5467:47129612009552]: Snagged 64 random bytes from /home/tom/.rnd
2007.10.08 06:01:10 LOG7[5467:47129612009552]: Wrote 1024 new random
bytes to /home/tom/.rnd
2007.10.08 06:01:10 LOG7[5467:47129612009552]: RAND_status claims
sufficient entropy for the PRNG
2007.10.08 06:01:10 LOG7[5467:47129612009552]: PRNG seeded successfully
2007.10.08 06:01:10 LOG7[5467:47129612009552]: Certificate: /etc/ssl/
certs/alpha.just-email.com.pem
2007.10.08 06:01:10 LOG7[5467:47129612009552]: Certificate loaded
2007.10.08 06:01:10 LOG7[5467:47129612009552]: Key file: /etc/ssl/
certs/alpha.just-email.com.pem
2007.10.08 06:01:10 LOG7[5467:47129612009552]: Private key loaded
2007.10.08 06:01:10 LOG7[5467:47129612009552]: SSL context
initialized for service imaps
[Failed: /etc/stunnel/stunnel.conf]
You should check that you have specified the pid= in you
configuration file
Which is, for starting stunnel4 from init.d scripts, were I left off.
So, I think dbmail is "working", inetd might be working...
closer...
_______________________________________________
DBmail mailing list
[email protected]
https://mailman.fastxs.nl/mailman/listinfo/dbmail
