-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Frank Richter wrote:
| Hi,
| I've a cyrus-imapd 2.3.12 installation with these options in imapd.conf
|
| tls_cert_file: /etc/exim/etc/server.crt
| tls_key_file: /etc/exim/etc/server.key
| tls_ca_file: /etc/pki/tls/certs/ca-chain.crt
|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jorey Bump wrote:
| Goetz Babin-Ebell wrote, at 11/13/2008 03:57 PM:
|
| If you don't want to do client authentication, why do you set
| tls_ca_file at all ?
|
| Hmm, I do it to suppress these errors:
|
| TLS server engine: cannot load CA data
from
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Johannes Rußek wrote:
| Hi Guys,
Hello Johannes,
| I'm trying to patch tls.c to make it able to pick different attributes
| in the client cert to authenticate from and will also try to update the
| openssl api in use if i get a bit help there.
While
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Daniel O'Connor wrote:
| On Wed, 23 Apr 2008, Goetz Babin-Ebell wrote:
| Lukasz Michalski wrote:
| | I have working setup with TLS/SSL encryption based on server
| | certificate only. I have following message each successful login:
| |
| | Apr 22 15
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Lukasz Michalski wrote:
| Hello,
Hello Lukasz,
| I have working setup with TLS/SSL encryption based on server certificate
| only. I have following message each successful login:
|
| Apr 22 15:42:46 black imap[26881]: TLS server engine: No CA file
|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wesley Craig wrote:
| On 13 Apr 2008, at 17:19, Goetz Babin-Ebell wrote:
| Cyrus barfing on no CA data set with no client authentication is a bug.
|
| Hard not to agree. :) Submit a patch, please.
OK, I've opened a ticked and submitted the patch
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wesley Craig schrieb:
| From the article:
| I’ve *finally* discovered why my IMAP server no longer likes my
| self-signed certificates. The certificates are just fine. Cyrus is
| just fine. It’s OpenSSL that’s the problem - Bug 1513 to be exact.
|
|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
brian schrieb:
| Goetz Babin-Ebell wrote:
| brian schrieb:
| | brian wrote:
| | I'm trying (and failing) to set up TLS and hope someone might be
able to
| | shed some light on my problem. Authentication failed so I checked
| | maillog and found
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
brian schrieb:
| brian wrote:
| cyrus-imapd-2.3.9-7.fc7
| openssl-0.9.8b-15.fc7
|
| I'm trying (and failing) to set up TLS and hope someone might be able to
| shed some light on my problem. Authentication failed so I checked
| maillog and found:
|
|
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Nels Lindquist schrieb:
Hi, all.
Hello Nels,
I'm configuring a Cyrus IMAPD server for a number of virtual domains,
and I'm concerned about a potential issue with SSL/TLS for the virtual
hosts, which is that I can't find a way of specifying
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
JOYDEEP schrieb:
Goetz Babin-Ebell wrote:
The problem is that cram-md5 and digest-md5 need direct access to the
pass phrase in plain text.
AFAIK LDAP doesn't support this.
You have to use TLS if you want to transmit the pass phrase securely
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dmitriy Kirhlarov schrieb:
On Fri, Apr 20, 2007 at 09:47:07AM +0530, JOYDEEP wrote:
Goetz Babin-Ebell wrote:
JOYDEEP schrieb:
But I have come to know that digest-md5 and cram-md5 need sasldb. so
here I can't use it as my users and passwords
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
JOYDEEP schrieb:
Roberto R. Morelli wrote:
Hello Joydeep,
Then we have the cyrus sasl modules installed:
cyrus-sasl-md5-2.1.22-4
cyrus-sasl-2.1.22-4
cyrus-sasl-lib-2.1.22-4
cyrus-sasl-plain-2.1.22-4
But I have come to know that digest-md5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Phil Pennock schrieb:
Hello Phil,
New feature: TLS client certificate authentication. If you can auth
with a client cert for IMAP, this will work for Sieve; myself, I grant
the certificate CN (Phil Pennock) a admin rights on my INBOX. This
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
fgang Hennerbichler schrieb:
On 15.11.2006, at 00:59, Phil Pennock wrote:
I'm open to more feature requests.
Well, here is one.
For self-signed certificates I get the error
STARTTLS promotion failed: SSL connect attempt failed with unknown
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello Paul,
Paul Pruett schrieb:
I hacked some variations on the files trying to get imap applications to
realize the root was not the cert for registerfly, but the cert that
registerfly gave me, and then use server key for that cert...
but it
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello Ram,
Ramprasad schrieb:
I have cyrus-imapd-2.2.3 on FC1
When mail is delivered from postfix to cyrus , via unix lmtp some mails
with japanese characters in headers ( from: and Subject: ) get changed
The headers get replaced with XX
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Leena Heino schrieb:
Hello Leena,
Somewhere in bugzilla.mozilla.org is a feature request
from me asking for that feature.
But it was turned down in favor of a planned general overhaul
of the authentication framework
(from which I also never
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
Hello Goetz,
Hello Andreas,
After some more research I finally found out that Thunderbird should not
yet try to authenticate with certs anyway. The whole thing is not
completely implemented but cannot be switched off,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
Hello,
Hello Andreas,
could please somebody tell me what tls_ca_path is good for if it is
somehow ignored in the config file? For other servers putting the
different CA-certs in one directory is enough but cyrus needs an
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Benzing schrieb:
Hello once more,
Hello Andreas,
Goetz Babin-Ebell wrote:
Andreas Benzing schrieb:
the tls_ca_path directory is used in certificate verification:
of the issuer dn of the cert to verify is a checksum calculated,
this 32
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Richard schrieb:
hi mitu,
Hello Richard,
please read reported error messages more carefully...
i was getting repeated failures:
S: * OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID STARTTLS LOGINDISABLED
AUTH=DIGEST-MD5 AUTH=DIGEST-MD5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Denis Sacchet schrieb:
Hi,
Hello Denis,
I've got since 1 or 2 month problems with TLS connection to my cyrus
server in IMAP. I will try to explain the configuration and the problem.
First of all, here is my cyrus.conf and imapd.conf :
Nikola Milutinovic wrote:
Andreas Hasenack wrote:
On Mon, Nov 21, 2005 at 03:15:03PM +0100, Nikola Milutinovic wrote:
Then there is a change in semantics of the OpenSSL API and somebody
will have to dig through the docs.
Just changed a build option for openssl.
What didn't work
Nikola Milutinovic wrote:
Goetz Babin-Ebell wrote:
Nikola Milutinovic wrote:
Hmm, first of all, why no-idea, no-rc5? You have better
implementations on your system? I usually let OpenSSL be the provider
of those algorithms.
Because idea and rc5 have patent issues ?
Heh, forgot about
[EMAIL PROTECTED] wrote:
Hi,
Hello Leon,
I've found this on http://www.nyetwork.org/wiki/ssl_root_ca_new
Create a PKCS#7 format of the Root CA's public certificate:
This will allow clients to easily import it into their
their PKI storage places, such as Outlook Express and Netscape.
This
Nicole Skyrca wrote:
Right now I'm trying to solve the problem of why I get see the
unable to get local issuer certificate messages when running the
openssl s_client command. I'm not that familiar with ssl (or imap) and
I
don't know if this is normal or not, or if ssl is working properly.
Cory D. Wiles wrote:
For some reason the default mailbox creations on my cyrus install have
become all screwed up.
cyrus creates mailboxes only on request by user
I would like to know what I should do to delete ALL of the boxes
currently on the system. I created an account for myself(this first
Alain Williams wrote:
On Sun, May 15, 2005 at 07:40:25PM -0400, Derrick J Brashear wrote:
I would also like to see '[info-cyrus]' put on the subject line.
Your local procmail (or whatever you use) has all the info
it needs to do that for you.
In my eyes it is just unnecessary noise that clobbers
Jules Agee wrote:
Goetz Babin-Ebell wrote:
Alain Williams wrote:
On Sun, May 15, 2005 at 07:40:25PM -0400, Derrick J Brashear wrote:
I would also like to see '[info-cyrus]' put on the subject line.
Your local procmail (or whatever you use) has all the info
it needs to do that for you.
In my eyes
Andreas Hasenack wrote:
A friend of mine had these rules (cyrus-imapd-2.2.12):
--8---
if
elsif
elsif header :contains From [EMAIL PROTECTED] {
discard;
}
if ...
(script continues)
--8---
Note how the if/elsif structure is broken and a new if statement begins
later
31 matches
Mail list logo
