Re: Undefining HAVE_BKGDSET in config.h doesn't work any more
* Kevin J. McCarthy [2021-11-17 18:37]: > > However from 2.1.x(?) this doesn't seem to be working any more. I've > > also tried defining it explicitely to 0... > > Mutt 2.1+ will use bkgrndset() if available. Try undefining HAVE_BKGRNDSET > too. Ha. That worked. Should've seen it myself - it was on the line below. *facepalm* Thanks. -- Vegard Svanberg [*Takapa@IRC (EFnet)]
Re: Why uw.edu not accepted my signed email?
On Wed, Nov 17, 2021 at 07:53:47PM +0100, Daniel Tameling wrote: > On Tue, Nov 16, 2021 at 04:36:43PM -0500, Andrew D. Arenson wrote: > > I receive email using IMAP via a davmail process that in turn interacts > > with Indiana University's Office 365 Exchange instance. > > If you use davmail, you don't have to use TLS for sendmail: "SSL is not > necessary when DavMail is used in workstation mode, as communication between > clients and DavMail remain local. However, in server (shared) mode e.g. with > a smartphone connecting to DavMail over the internet, you should make sure > encryption is enabled." (http://davmail.sourceforge.net/sslsetup.html) > > If you want to use TLS, the link contains also information on how to set that > up. > > The TLS connection between davmail and the Exchange server is taken care of > by davmail itself and it seems to be working in your setup as you can read > emails through davmail. > > Personally I use msmtp instead of sendmail. I'm currently not at my work > notebook but a quick google search turned up this with a .msmtprc that looks > reasonable: https://cstan.io/?p=8790&lang=en > > It shouldn't be too much work to set that up in case you want to try it in > order to be sure your setup is otherwise correct. Thanks. Learning the details of what the email client is doing versus the MTA, and distinguishing various online information related to TLS and email by whether the TLS is being used for receiving email, sending email, encrypting email, or signing email has been a challenge! I appreciate the idea, as I understand it, that I could send the email via my davmail gateway w/ Exchange. Looks like I have three different ways to send email: * via local MTA (mutt's default, I think) * via university mail relay (either by congifuring the local MTA to use it, or possibly configuring mutt to use it) * via davmail/Exchange (by configuring mutt, I think) My next step will likely be to replace sendmail with postfix on my workstation, see if that solves the problem immediately, and, if not, leverage work I've done in the past to configure postfix to use our university's mail relay and see if that solves the problem. If those both fail, perhaps I'll look into configuring mutt to use the university mail relay or configure mutt to use the davmail gateway to Exchange. Andy -- Andrew D. Arenson (he/him) H 317.964.0493 arenson (at) spatzel.netC 317.679.4669
Re: Why uw.edu not accepted my signed email?
On Tue, Nov 16, 2021 at 04:36:43PM -0500, Andrew D. Arenson wrote: > I receive email using IMAP via a davmail process that in turn interacts > with Indiana University's Office 365 Exchange instance. If you use davmail, you don't have to use TLS for sendmail: "SSL is not necessary when DavMail is used in workstation mode, as communication between clients and DavMail remain local. However, in server (shared) mode e.g. with a smartphone connecting to DavMail over the internet, you should make sure encryption is enabled." (http://davmail.sourceforge.net/sslsetup.html) If you want to use TLS, the link contains also information on how to set that up. The TLS connection between davmail and the Exchange server is taken care of by davmail itself and it seems to be working in your setup as you can read emails through davmail. Personally I use msmtp instead of sendmail. I'm currently not at my work notebook but a quick google search turned up this with a .msmtprc that looks reasonable: https://cstan.io/?p=8790&lang=en It shouldn't be too much work to set that up in case you want to try it in order to be sure your setup is otherwise correct. -- Best regards, Daniel
Re: Undefining HAVE_BKGDSET in config.h doesn't work any more
On Wed, Nov 17, 2021 at 10:04:22AM +0100, Vegard Svanberg wrote: To get around the rather annoying copy-and-paste problem[1] when running Mutt in Screen or Tmux, I've up until now undefined HAVE_BKGDSET in config.h and all has been well. However from 2.1.x(?) this doesn't seem to be working any more. I've also tried defining it explicitely to 0... Mutt 2.1+ will use bkgrndset() if available. Try undefining HAVE_BKGRNDSET too. -- Kevin J. McCarthy GPG Fingerprint: 8975 A9B3 3AA3 7910 385C 5308 ADEF 7684 8031 6BDA signature.asc Description: PGP signature
Re: Why uw.edu not accepted my signed email?
As I wrote before: check some online articles (this is not a problem with mutt). In this case it seems the problem might be on the server side. You can probably disable the use of DH ciphers (in sendmail) in general or at least with those servers (that might require a newer sendmail version).
Re: Why uw.edu not accepted my signed email?
On Wed, Nov 17, 2021 at 07:24:02AM +, Claus Assmann wrote: > On Wed, Nov 17, 2021, Andrew D. Arenson wrote: > > > Oct 21 19:52:35 redsolar sm-mta[1465905]: STARTTLS=client, error: > > connect failed=-1, reason=dh key too small, SSL_error=1, errno=0, > > It seems your sendmail version is a bit old? Check your favorite > search engine... you need to generate a larger DH key - how to do > that depends on your OS (or maybe update sendmail or disable DH?) My sendmail version is 8.15.2-18. The most current version is 8.17.1 . I'm having a hard time getting a sense of how old my version is, but it's what Ubuntu offers, so I wouldn't guess it was that old. I've attempted to follow instructions I found for configuring sendmail to use a 2048 bit dh key, but it's had seemingly no effect: # openssl dhparam -out /etc/pki/tls/certs/dhparams.pem 2048 # cd /etc/mail # (edit sendmail.mc) LOCAL_CONFIG O CipherList=HIGH:!ADH O DHParameters=/etc/pki/tls/certs/dhparams.pem # make # /etc/init.d/sendmail reload If the problem has nothing to do with mutt, than I'll certainly understand if this isn't the place to keep asking for more help. If anyone has further advice, I'm happy to hear it. Andy -- Andrew D. Arenson (he/him) H 317.964.0493 arenson (at) spatzel.netC 317.679.4669
Undefining HAVE_BKGDSET in config.h doesn't work any more
Hi, To get around the rather annoying copy-and-paste problem[1] when running Mutt in Screen or Tmux, I've up until now undefined HAVE_BKGDSET in config.h and all has been well. However from 2.1.x(?) this doesn't seem to be working any more. I've also tried defining it explicitely to 0... Any other clues as to how to work around the issue[1]? [1] If you copy and paste from within a Screen or Tmux session, the empty spaces behind a line will be part of the paste. -- Vegard Svanberg [*Takapa@IRC (EFnet)]