Thanks for this. No dice. -showcerts doesn't display any certs
associated with the connection. How very odd...
Jan
On 10/15/13 11:09 PM, "Johnny Minty" wrote:
>Hi Jan,
>
>I would check to make sure the unlimited strength policy files are
>installed.
>
>Link to Java 7 policy files below:
>
>
Hmm. You alluded to the keytool command in the install docs holding for
James v 2.3, which I take it is what you are running. Maybe the server
doesn't like the wildcard cert. If this is a self-signed cert, try
generating a new one for just the domain you need for the mail server and
see if the serv
Thanks, Robert. I'm a bit leary about stability of V3 yet and haven't
done any testing to see if my custom mailets will operate the same way
they do in V2.3 -- any insight there would be helpful.
I will take your advice and regenerate the certificates. I'm currently
testing with a self-signed ce
SOLVED. sunjce_provider.jar version mismatch against java runtime.
Absolutely no way to identify this -- even after turning on all jsse
logging flags on the phoenix command line java options.
WOW.
Thanks to everyone who helped push me along to the solution.
Many thanks.
Jan
On 10/16/13 9:4
Well, one problem down, one to go?
TLS Connectivity now checks out at the openssl and nmap levels. I even
get:
No client certificate CA names sent
---
SSL handshake has read 1666 bytes and written 278 bytes
---
New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 2048 bit
Secure R
Curiouser and curiouser...
Openssl connection testing works and I can ehlo and send email to the
server using that.
Exchange server connects to james and then hangs no matter what I do.
Anybody ever gotten an exchange 2010 server to communicate via tls and
basic auth with james 2.3?
Jan
On 1
Okay... I think I may have found it and, if I'm right, it isn't pretty.
With UseTLS enabled on an smtpserver in james 2.3 it looks like the
following is true:
- it doesn't advertise starttls and expects TLS to have been initiated as
part of the initial connection to, say, port 465
- it doesn't re
