Charles Benett wrote:
>
> Serge Knystautas wrote:
> >
> > ----- Original Message -----
> > From: "Charles Benett" <[EMAIL PROTECTED]>
> > Subject: Re: TLS support
> >
> > > I've commited a version of SMTPServer in proposal which enables TLS.
> > > However, this does not work as expected. I believe the problem revolves
> > > around the use of the deprecated method DataInputstream.readLine() in
> > > SMTPHandler. Basically, as it is, the TLS version never sees the
> > > end-of-Data marker so the connection has to be manually closed. The
> > > message is recieved OK, but with a spurious '.' or 2 at the end.
> >
> > I'm having trouble setting up the proposed SMTPServer support for TLS.
> > Here's what I did:
> >
> > 1. Installed JSSE (put jars in various places... <java-home>/lib/ext, and in
> > james's lib directory, and then created the static mapping for the security
> > provider)
> > 2. Copied SMTPServer.java from proposals over the existing SMTPServer.java.
> > 3. Rebuilt distribution of JAMES.
> > 4. Started JAMES
> > 5. Edited conf files in Avalon.conf.xml and JAMES.conf.xml to enable TLS
> > support for the SMTP Server.
> > 6. Copied avalonTestKeys from the avalon.jar into the conf directory.
> > 7. Let JAMES finish starting up.
> >
> > I then get the following error message, and JAMES stops...
> >
> > 2000.09.16 11:24:15 540 Channel default opened
> > Main: Cannot open new listener (TLS) on port 25: Cannot open
> > TLSServerSocketAcceptor on port 25
> > java.lang.RuntimeException: Cannot open new listener (TLS) on port 25:
> > Cannot open TLSServerSocketAcceptor on port 25
> > at
> > org.apache.avalon.blocks.serversocket.SocketManager.openListener(SocketManag
> > er.java:83)
> > at org.apache.james.smtpserver.SMTPServer.init(SMTPServer.java:64)
> > at org.apache.james.James.init(James.java:182)
> > at org.apache.avalon.engine.Avalon.initBlock(Avalon.java:144)
> > at org.apache.avalon.engine.Avalon.init(Avalon.java:112)
> > at org.apache.avalon.loader.Main.main(Main.java:88)
> >
> > If anybody has any ideas on what might be wrong, I'd appreciate some
> > pointers as I'd like to at least attempt to fix the bug with SMTP and TLS.
>
> Weird.
> What OS and JDK are you using?
> Can you get TLS support for RemoteManager and POP3?
> It could be an issue with a port number < 1024. Try TLS & SMTP on an
> arbitray port >1024.
> What log messages are you getting for SocketManager (netfile, I think)
OK maybe not so weird.
I get exactly the same error when I run James as a regular user (TLS or
not TLS), I have to run as root to get either working. So my money is on
a permissioning problem. At some point we need to address this more
broadly, as, obviously, I don't want to run james as root in a
production environment.
HTH
Charles
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives: <http://www.mail-archive.com/james%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
