Hi All, I've set up Dovecot to use my signed SSL certificate and IMAP client is using STARTTLS on port 143 without secure authentication. The TLS negociation process seems to go through ok but once the negociation is finished the client sends an IMAP LOGOUT message; he does not try to authenticate, below is the Dovecot's info log: dovecot: 2010-06-15 15:37:01 Info: auth(default): new auth connection: pid=3932 dovecot: 2010-06-15 15:37:03 Info: imap-login: Aborted login (0 authentication attempts): rip=130.100.32.54, lip=10.0.3.3, TLS I've decrypted the TLS negociation thanks to Wireshark (in SSL preferences I added the certificate's private key to decode the stream between client and server) but unfortunately it does not say why the client is sending the LOGOUT command. Do you have an idea of what could be wrong in my server set up? What debugging process would you advise me to follow? Thanks a lot for your precious help. Bastien -- View this message in context: http://old.nabble.com/Logout-after-SSL-TLS-negociation-tp28900688p28900688.html Sent from the Dovecot mailing list archive at Nabble.com.
On Wed, Jun 16, 2010 at 05:22, bmfr <bastien.murzeau at palomanetworks.com> wrote:> I've set up Dovecot to use my signed SSL certificate and IMAP client is > using STARTTLS on port 143 without secure authentication. > > The TLS negociation process seems to go through ok but once the negociation > is finished the client sends an IMAP LOGOUT message; he does not try to > authenticate, below is the Dovecot's info log: > > dovecot: 2010-06-15 15:37:01 Info: auth(default): new auth connection: > pid=3932 > dovecot: 2010-06-15 15:37:03 Info: imap-login: Aborted login (0 > authentication attempts): rip=130.100.32.54, lip=10.0.3.3, TLS > > I've decrypted the TLS negociation thanks to Wireshark (in SSL preferences I > added the certificate's private key to decode the stream between client and > server) but unfortunately it does not say why the client is sending the > LOGOUT command. > > Do you have an idea of what could be wrong in my server set up? What > debugging process would you advise me to follow?What client are you using? Have you tried other clients to see if they do the same LOGOUT?
Possibly Parallel Threads
- Codec negociation
- [PATCH v1 0/1] s390: virtio-ccw: PV needs VIRTIO I/O device protection
- [PATCH v1 0/1] s390: virtio-ccw: PV needs VIRTIO I/O device protection
- How to enable T.38 between SPA3102 PSTN Line port and ReceiveFAX app ?
- TLSv1.2 support for lftp on CentOS 6.x