More POP3/SSL & Eudora [Was: Re: qpopper pop3 and SSL experiences]
Thanks all for the help. Today I installed courier-imap, and reconfigured Exim for Maildir delivery, and I can now get mail out over POP3 + SSL. Apple's OS X mail client and Mac Eudora 6b are working fine. (I had sort of been wanting to try maildirs, and this way I can evolve to IMAP if I want, so I will probably stick with this.) Eudora for Windows is still hosed though. I did manually add my cert to the trusted list but I still have this error to deal with: SSL Negotiation Failed: Certificate bad: Destination Host name does not match host name in certificate Cause (-6984) Now, I am using a self-signed cert that I created with courier's shortcut command, and this test system does not have a real hostname yet, which seems like it would explain this error... but does anyone know a way to tell Eudora to not care about bad certificates? Or better still, how do I create a cert myself that satisfies Eudora? Will it even be possible to when my mail server testbed is at 192.168.x.y, without a fully-qualified hostname? Getting real close now though, thanks to everyone! - Matt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: qpopper pop3 and SSL experiences
I am using qpopper 4.0.3 for an ISP and it works fine for all the various SSL mail clients. Configuration may be a bit difficult for the client as some of them use the interim SSL mail port and some use the standard POP3 port. I have to run 2 separate POP servers with different ports to handle them. Likewise the users have to try the 2 different client configurations to see which one works for their specific client. Eudora on the Mac was simple. I have tested it on the PC also and I have a large number of users using it. The two config files I use are: set bulldir="/var/bulletins" set reverse-lookup=false set home-dir-mail=".mail" reset keep-temp-drop set fast-update reset check-old-spool-loc set tls-support=stls set tls-private-key-file=/www/certs/mail.key.pem set tls-server-cert-file=/www/certs/mail.cert.pem set trim-domain=true set bulldir="/var/bulletins" set reverse-lookup=false set home-dir-mail=".mail" reset keep-temp-drop set fast-update reset check-old-spool-loc set tls-support=alternate-port set tls-private-key-file=/www/certs/mail.key.pem set tls-server-cert-file=/www/certs/mail.cert.pem set trim-domain=true Here are the instructions we provide our users for Eudora: Some e-mail clients do support RFC 2595 and they work differently. They use port 110 which is the standard POP3 port. Here are the configuration instructions for Eudora 5.1: • Go to Tools, Options and then select the icon for Checking Mail. • Set the Secure Sockets when Receiving to "If Available, STARTTLS". • Then select OK and download mail. It will fail with a certificate problem. • Go back to Tools, Options, Checking Mail and select the button "Last SSL Info". • That will display the LAFN certificate. • Select the Certificate Information Manager button just above the OK button. • That displays a different view of the certificate. • Press the "Add To Trusted" button. • Then press Done, OK etc. back out. • Then download mail again and it should work. On Sunday, Jul 27, 2003, at 13:09 US/Pacific, Matt Staroscik wrote: To make a long story short, I have been unable to get qpopper 4.0.5 + SSL to work with Eudora 5.2.1. Using my self-signed cert I can get a secure connection to Apple's OS X mail client, but not Mac or Windows Eudora. On the Mac I see handshake errors, on Windows I get errors which I may be able to get around but without Mac support it isn't worth it. From Googling I have learned that there are many others having issues with qpopper, Eudora and SSL but I haven't found a workaround. Has anyone found a pop3 daemon with SSL support that works with a wide variety of email clients? Oh, FWIW my MTA is Exim and I should be able to switch to maildir instad of /var/ mail storage easily enough, if required, as the system is not in production yet. Thanks! Cheers, Matt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" -- Doug ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: qpopper pop3 and SSL experiences
On Sun, 27 Jul 2003, Matt Staroscik wrote: > To make a long story short, I have been unable to get qpopper 4.0.5 + SSL > to work with Eudora 5.2.1. Using my self-signed cert I can get a secure > connection to Apple's OS X mail client, but not Mac or Windows Eudora. On > the Mac I see handshake errors, on Windows I get errors which I may be able > to get around but without Mac support it isn't worth it. Some versions of Eudora have a bug in their SSL implimentation. There's no work around as Eudora itself is, or at least was, broken. The details escape me but a bit of googling should prove to be enlightening. > Has anyone found a pop3 daemon with SSL support that works with a wide > variety of email clients? Oh, FWIW my MTA is Exim and I should be able to > switch to maildir instad of /var/ mail storage easily enough, if required, > as the system is not in production yet. We may get some flames for this but we have long used Washington University's POP deamon on our production servers and our experience is that it supports POP clients that are not broken quite nicely. Best Regards, Brent Brent Sims, Customer Satisfaction Manager WebOkay Internet Services, LLC http://www.webokay.net/ Phone (719) 595-1427 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: qpopper pop3 and SSL experiences
On Sun, 27 Jul 2003 13:09:33 -0700 Matt Staroscik <[EMAIL PROTECTED]> wrote: > Has anyone found a pop3 daemon with SSL support that works with a wide > variety of email clients? yes, courier ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
qpopper pop3 and SSL experiences
To make a long story short, I have been unable to get qpopper 4.0.5 + SSL to work with Eudora 5.2.1. Using my self-signed cert I can get a secure connection to Apple's OS X mail client, but not Mac or Windows Eudora. On the Mac I see handshake errors, on Windows I get errors which I may be able to get around but without Mac support it isn't worth it. From Googling I have learned that there are many others having issues with qpopper, Eudora and SSL but I haven't found a workaround. Has anyone found a pop3 daemon with SSL support that works with a wide variety of email clients? Oh, FWIW my MTA is Exim and I should be able to switch to maildir instad of /var/ mail storage easily enough, if required, as the system is not in production yet. Thanks! Cheers, Matt ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"