Your message dated Fri, 1 Jun 2012 08:13:17 +0900
with message-id <[email protected]>
and subject line Re: Bug#674990: exim breaks (again?) with TLS packet with
unexpected length
has caused the Debian Bug report #674990,
regarding exim breaks (again?) with TLS packet with unexpected length
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
674990: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674990
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: exim4-daemon-light
Version: 4.77-1+b1
Severity: serious
Submitter: Norbert Preining <[email protected]>
Hi all,
I have searched the bug database and the web for information, and I cannot
get it to work, exim *always* dies with
TLS error on connection to xxx.yyy.zzz.www [NN.NN.NN.NN] (gnutls_handshake): A
TLS packet with unexpected length was received.
I have found various suggestions, like adding the Debian-exim user
to the group shadow, but none of it helped.
I am just trying to deliver mail to an smtp server here
at work.
Furthermore, I cannot run swaks, it segfaults in libcrypto
(all messed up, really).
When I do
$ openssl s_client -connect xxx.yyy.zzz.www:587
CONNECTED(00000003)
139642052535976:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_clnt.c:766:
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 320 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---
$
So also this does not help really.
The remote server is not under my control, but is advertised as
smtp server in my university.
Thanks for any suggestion
Norbert
--- End Message ---
--- Begin Message ---
Hi Andreas,
yeahhH!!!!!
On Do, 31 Mai 2012, Andreas Metzler wrote:
> You are right. The documentation is not correct in that respect,
> gnutls_compat_mode=true is only accepted as a main configuration
;-)
> configured to use jaist.ac.jp::587 as smarthost. Of course I cannot
Ahhh, now I see ... during the tests I changed to 463 (or what was it)
as port number and there it does not work ... because we did the tests
with openssl and gnutls-bin on this port.
Changing to 587 plus the above 2 changes (gnutls_compat_mode and
the protocol stuff) and everything works!!!
Yucheeee, thanks a lot, that was great help. Sorry for having you
abused, I wasn't sure whether it is a problem of Debian or the server,
as it was.
Anyway, I am not sure, but I guess the opposite side is a MS IIS or so,
I read a bit up on the link you send me. In this case this behaviour
will happen quite often, so one might add it somewhere somewhere so
that a admin might find it ;-)
Thanks again, closing this bug.
Best wishes
Norbert
------------------------------------------------------------------------
Norbert Preining preining@{jaist.ac.jp, logic.at, debian.org}
JAIST, Japan TeX Live & Debian Developer
DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094
------------------------------------------------------------------------
OZARK (n.)
One who offers to help just after all the work has been done.
--- Douglas Adams, The Meaning of Liff
--- End Message ---
