Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail

On Tue, Jul 25, 2006 at 06:09:56PM -0700, Ian Zimmerman wrote: > [EMAIL PROTECTED]:/etc/exim4/conf.d$ openssl s_client -connect 127.0.0.1:587 > -starttls smtp > CONNECTED(0003) > 20025:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown > protocol:s23_clnt.c:567: > [EMAIL PROTECTED]:/e

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Jan 05, 2008 at 09:31:40PM +1100, Andrew McGlashan wrote: > Marc Haber wrote: > >So you only have ssl_on_connect_port=465 in your exim configuration > >and no other port number? And you get a clear text banner when you > >connect to tcp/25 or tcp/587? And you get a banner when you use > >gn

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc Haber wrote: So you only have ssl_on_connect_port=465 in your exim configuration and no other port number? And you get a clear text banner when you connect to tcp/25 or tcp/587? And you get a banner when you use gnutls-cli -p 465 _without_ the -s option? www:/tmp# grep ssl_on_connect_port

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Simon Josefsson <[EMAIL PROTECTED]> writes: >> If I recall correctly, Simon is running an incredimail evaluation copy >> under wine and can do any debugging on the library side that might be > > Actually that was TheBat!... I'll see if I can find a incredimail > evaluation copy too. There is one

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc Haber <[EMAIL PROTECTED]> writes: >> but I can't be sure as I probably don't understand enough to properly debug >> the issue amongst other things I need to do. >> >> Is there a good step by step process that I could follow to help this cause? >> >> Would a copy (privately) of my /var/lib/

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Jan 05, 2008 at 09:02:43PM +1100, Andrew McGlashan wrote: > Marc Haber wrote: > >I am having a problem with your port references. It would be more > >helpful if you'd not only reference the port number (which is most > >probably irrelevant for debugging), but also the protocol you're > >usi

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi, Marc Haber wrote: I am having a problem with your port references. It would be more helpful if you'd not only reference the port number (which is most probably irrelevant for debugging), but also the protocol you're using. I feel that we are mixing up plain unencrypted SMTP (which usually ru

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Jan 05, 2008 at 02:27:26PM +1100, Andrew McGlashan wrote: > Simon Josefsson wrote: > > There is clearly still some problem between IM and Exim, but that > > could be the topic for another report? It would be interesting if > > you could identify whether it is related to exim (i.e., does it

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi Simon, Simon Josefsson wrote: Thanks for prompt feedback, Andrew! You are most welcome. My reading from this is that we can close the IM related part of this bug report. Perhaps. There is clearly still some problem between IM and Exim, but that could be the topic for another report?

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Jan 05, 2008 at 04:32:55AM +1100, Andrew McGlashan wrote: > I tried adjusting my exim4 config by setting MAIN_TLS_ENABLE to false and > restarting exim4. Since MAIN_TLS_ENABLE is in .ifdef clauses, setting MAIN_TLS_ENABLE to false will enable TLS. You need to comment out its definition, s

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Thanks for prompt feedback, Andrew! My reading from this is that we can close the IM related part of this bug report. There is clearly still some problem between IM and Exim, but that could be the topic for another report? It would be interesting if you could identify whether it is related to ex

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi, I tried adjusting my exim4 config by setting MAIN_TLS_ENABLE to false and restarting exim4. OE still worked fine with SMTP Auth, but IM [with all it's crud in the registry btw, which is another matter], still failed exactly the same. So for me it isn't, I don't think, anything to do wit

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi Marc! I'm trying to help with debugging this problem. Can you still reproduce the problem, or has it disappeared? You reported it over a year ago... What I don't fully understand is whether your problem is between Thunderbird and Exim4+GnuTLS or between Exim4+GnuTLS and the remote server? C

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Mon, Oct 29, 2007 at 02:05:18AM +1100, Andrew McGlashan wrote: > Marc Haber wrote: > >> I want to be able to support the use of Incredimail against my mail > >> server without departing from my strict policy of using SMTP Auth > >> over port 465 with SSL security. > > > > Port 465 is an RFC viol

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Fri, Jul 28, 2006 at 12:22:03AM -0400, Ian Zimmerman wrote: > Okay, now gnutls-cli seems to work; immediately after, I try to connect > with openssl, still same error. > > [EMAIL PROTECTED]:~$ openssl s_client -connect localhost:587 -starttls smtp > CONNECTED(0003) > 32522:error:140770FC:SS

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc Haber wrote: After thinking for a while, why did your incredimail not complain about the server not presenting a certificate? It was dropping out with the error as given already with no hint of any certificate issue. I have my own ca.crt certificate installed in the trusted root in orde

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Thu, Nov 01, 2007 at 11:43:36AM +1100, Andrew McGlashan wrote: > # gnutls-serv -p 588 -d 5 > Echo Server ready. Listening to port '588'. > > |<4>| REC[8070cf0]: V2 packet received. Length: 76 > |<4>| REC[8070cf0]: Expected Packet[0] Handshake(22) with length: 1 > |<4>| REC[8070cf0]: Received Pa

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc Haber wrote: On Mon, Oct 29, 2007 at 02:14:19AM +1100, Andrew McGlashan wrote: Marc Haber wrote: You might want to use gnutls-serv as a test target against your incredimail client. Okay, well I set up port 588 for the test: # gnutls-serv -p 588 Echo Server ready. Listening to port '588'

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Mon, Oct 29, 2007 at 02:14:19AM +1100, Andrew McGlashan wrote: > Marc Haber wrote: >> You might want to use gnutls-serv as a test target against your >> incredimail client. > > Okay, well I set up port 588 for the test: > > # gnutls-serv -p 588 > Echo Server ready. Listening to port '588'. > > E

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc Haber wrote: You might want to use gnutls-serv as a test target against your incredimail client. Okay, well I set up port 588 for the test: # gnutls-serv -p 588 Echo Server ready. Listening to port '588'. Error in handshake Error: Could not negotiate a supported cipher suite. Kind Rega

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi Marc, Marc Haber wrote: I prefer to stick with standard packages as supplied by apt package management I am not interested in doing any re-compiles and moving too far away from the standards that are currently in place. Then you're out of luck. Okay well I'll persevere if I can wi

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sun, Oct 28, 2007 at 12:16:10AM +1000, Andrew McGlashan wrote: > Marc Haber wrote: > >You can recompile the packages with OpenSSL. > > I prefer to stick with standard packages as supplied by apt package > management I am not interested in doing any re-compiles and moving too > far away fr

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Receiving mail via POPS on port 995 with SSL works fine with Incredimail [and other tried MUAs] but that is using openssl through qpopper to get the mail. Extract from /var/log/mail.info : Oct 26 11:56:36 www in.qpopper[15103]: (v4.0.5) TLSv1/SSLv3 handshake with client at XX..x.

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi Marc, Marc Haber wrote: On Sat, Oct 27, 2007 at 03:29:47PM +1000, Andrew McGlashan wrote: I have just discovered this bug and it appears to be rather long term. any progress? This will most probably not be fixed in etch. :( What is Incredimail? An MTA, or a Mail service? Incredim

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On 2007-10-27 14:17:24 +0200, Marc Haber wrote: > You can recompile the packages with OpenSSL. Is there any reason why this isn't done by default? -- Vincent Lefèvre <[EMAIL PROTECTED]> - Web: 100% accessible validated (X)HTML - Blog: Work:

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Oct 27, 2007 at 03:29:47PM +1000, Andrew McGlashan wrote: > I have just discovered this bug and it appears to be rather long term. > any progress? This will most probably not be fixed in etch. > Some further information: > > SMTP Auth issue with Incredimail using Exim, but not with

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Hi, I have just discovered this bug and it appears to be rather long term. any progress? Some further information: SMTP Auth issue with Incredimail using Exim, but not with Gmail... - SSL over 465 works fine for Outlook Express; - same machine if running Incredimail fails with msg as pe

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

I am seeing this bug with exim version 4.62-4. To me, it happens with Thunderbird and Mozilla MUAs (on different computers). It does not happen all the time. If the MUA fails sending the message, a repeat attempt will eventually succeed. I tried connecting manually with: gnutls-cli --port 2

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

user [EMAIL PROTECTED] usertags #348046 - close-20060430 tags #348046 help thanks On Fri, Jul 28, 2006 at 12:22:03AM -0400, Ian Zimmerman wrote: > Okay, now gnutls-cli seems to work; immediately after, I try to connect > with openssl, still same error. I am at a loss here. Tagging this bug approp

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

>> [EMAIL PROTECTED]:~$ gnutls-cli --port 25 -d 5 --starttls localhost |<2>| >> ASSERT: gnutls_psk.c:101 Resolving 'localhost'... Connecting to >> '127.0.0.1:25'... >> >> - Simple Client Mode: >> >> 220 ahiker.homeip.net ESMTP Exim 4.62 Wed, 26 Jul 2006 22:08:04 -0400 >> Ian> It hangs here, h

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Wed, Jul 26, 2006 at 10:15:28PM -0400, Ian Zimmerman wrote: > Marc> Hm. Looks like gnutls-cli-debug cannot be used to debug STARTTLS > Marc> connects. Does hiking up gnutls-cli's debug level offer comparable > Marc> verbosity? > > Not really :\ > > [EMAIL PROTECTED]:~$ gnutls-cli --port 25 -d

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Marc> Hm. Looks like gnutls-cli-debug cannot be used to debug STARTTLS Marc> connects. Does hiking up gnutls-cli's debug level offer comparable Marc> verbosity? Not really :\ [EMAIL PROTECTED]:~$ gnutls-cli --port 25 -d 5 --starttls localhost |<2>| ASSERT: gnutls_psk.c:101 Resolving 'localhost'

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Wed, Jul 26, 2006 at 11:35:22AM -0400, Ian Zimmerman wrote: > On 7/26/06, Marc Haber <[EMAIL PROTECTED]> wrote: > >On Tue, Jul 25, 2006 at 06:39:55PM -0700, Ian Zimmerman wrote: > >> So, now I tried with gnutls-bin, also interesting (?) > >> > >> [EMAIL PROTECTED]:/etc/exim4/conf.d$ gnutls-cli-d

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On 7/26/06, Marc Haber <[EMAIL PROTECTED]> wrote: On Tue, Jul 25, 2006 at 06:39:55PM -0700, Ian Zimmerman wrote: > So, now I tried with gnutls-bin, also interesting (?) > > [EMAIL PROTECTED]:/etc/exim4/conf.d$ gnutls-cli-debug --port 25 -v localhost -d 3 You need the --starttls option. [EMAIL

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Tue, Jul 25, 2006 at 06:09:56PM -0700, Ian Zimmerman wrote: > I am not sure if this is the same problem, Possibly. Can you try answering the questions asked to the original bug reporter in this bug thread? Greetings Marc --

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Tue, Jul 25, 2006 at 06:39:55PM -0700, Ian Zimmerman wrote: > So, now I tried with gnutls-bin, also interesting (?) > > [EMAIL PROTECTED]:/etc/exim4/conf.d$ gnutls-cli-debug --port 25 -v localhost > -d 3 You need the --starttls option. Greetings Marc --

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

So, now I tried with gnutls-bin, also interesting (?) [EMAIL PROTECTED]:/etc/exim4/conf.d$ gnutls-cli-debug --port 25 -v localhost -d 3 Resolving 'localhost'... Connecting to '127.0.0.1:25'... |<3>| HSK[806f430]: Keeping ciphersuite: RSA_3DES_EDE_CBC_SHA1 |<3>| HSK[806f430]: Keeping ciphersuite:

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

I am not sure if this is the same problem, but with exim4-daemon-light version 4.62-2, TLS enabled (EHLO response lists STARTTLS), I try to connect from localhost with openssl and I get this: [EMAIL PROTECTED]:/etc/exim4/conf.d$ telnet localhost 587 Trying 127.0.0.1... Connected to localhost.loc

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

On Sat, Jan 14, 2006 at 12:59:25PM +0100, Martin A. Brooks wrote: > A newly install exim4 server produces the following error during any TLS > connection: > > 2006-01-14 11:57:13 TLS error on connection from (parken) [195.1.19.x] > (gnutls_handshake): A TLS packet with unexpected length was receiv

Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

Package: exim4-daemon-heavy Version: 4.60-1 Severity: important Hi A newly install exim4 server produces the following error during any TLS connection: 2006-01-14 11:57:13 TLS error on connection from (parken) [195.1.19.x] (gnutls_handshake): A TLS packet with unexpected length was received. 200