Looks like that was it - thanks a lot David! IMAP is syncing as we
speak. It looks like I have my work cut out for me to get things
updated to 9legacy's latest and greatest.
Cheers,
Steve
On Thu, Nov 28, 2019 at 1:00 PM David du Colombier <0in...@gmail.com> wrote:
>
> If the server uses a X.509
If the server uses a X.509 certificate with a SHA256 signature,
you need SHA2 signature support in libsec.
http://9legacy.org/9legacy/patch/libsec-x509-sha2.diff
http://9legacy.org/9legacy/patch/libsec-x509-sig.diff
--
David du Colombier
--
9fans: 9fans
P
> unfortunately it doesn't look like anything is being logged
Turns out I misremembered where upas/fs logs the failure:
; upas/fs -f /imaps/imap.gmail.com/$gmail
upas/fs: opening /imaps/imap.gmail.com/$gmail: imap.gmail.com/imaps:cert for
imap.gmail.com not recognized:
sha256=3oXL6BEgeiAKLNpIZt
Thanks - unfortunately it doesn't look like anything is being logged.
Interestingly enough, it looks like mail has been broken for quite a
while, this was the last log message recorded (the fileserver went
into storage in mid 2018):
gunge Aug 26 05:25:04 delivered stallion From stallion Wed Aug 26
Check /sys/log/mail for a fingerprint.
--
9fans: 9fans
Permalink:
https://9fans.topicbox.com/groups/9fans/Te20476748ab5e4ba-M519efe14ca0b3cb7c3836dee
Delivery options: https://9fans.topicbox.com/groups/9fans/subscription
Adding the fingerprint will work if you are lucky, once,
or maybe twice.
In my experience almost every new connection required
redoing the above -- which wasn't very fun so I ended
up forwarding gmail into a sub-mailbox under my control
and haven't looked back.
Working with their SMTP has the sam
Thanks guys. I suspect I'm about to regret my lack of time mucking
about with tls on plan9:
% upas/fs -f /imaps/imap.gmail.com/sstall...@gmail.com
upas/fs: opening /imaps/imap.gmail.com/sstall...@gmail.com:
imap.gmail.com/imaps:tlsClient: tls: local invalid x509/rsa
certificate
% cat /sys/lib/tls
The TLS implementation on Plan 9 doesn't verify X.509 certificate chain,
so the certificate bundle isn't useful. It's only used by Go programs.
However, you need to add the server certificate fingerprint to
/sys/lib/tls/mail,
as Steve Simon said.
--
David du Colombier
-
hi,
i receive mail on plan9 so i dont use gmail.
you sure you didn't forget to install a new x509 thumbprint in
/sys/lib/tls/mail?
-Steve
On 28 Nov 2019, at 3:40 pm, Steven Stallion wrote:
>
> All,
>
> Is anyone still fetching Gmail these days? After bringing my old
> fileserver back onlin
All,
Is anyone still fetching Gmail these days? After bringing my old
fileserver back online I noticed that mail delivery seems to be
broken. Both getpop3 and upas/fs are complaining of invalid
certificates, which is leading me to think I need to make some updates
to the list of trusted certificat
10 matches
Mail list logo
