similar to: SSL issues when proxying

Displaying 20 results from an estimated 600 matches similar to: "SSL issues when proxying"

2007 Jul 18
1
apache mod_authnz_ldap: multiple servers syntaxes
Hello, I'm trying this here first before moving to the apache list. Maybe someone of you use mod_authnz_ldap with multiple ldap servers declaration for redundancy. With one server declared it is working. Here is what I've tried for adding another one (space separated as read in the apache's doc) : .... AuthLDAPURL
2014 Oct 11
0
]UG] Dovecot 2.2.9 SSL client cert verification fails: openssl verify: OK
Greetings all, I have verified a bug that has long been attributed to lack of knowledge on the part of the user. Dovecot rejects StartSSL client certificates due to reject StartSSL root CA when doing client verification even though the appropriately constructed ca-bundle.pem has been created and applied vi ssl_ca = </etc/dovecot/ca-bundle.pem. openssl verify -CAfile ca-bundle.pem
2015 Jan 12
2
Dovecot replication over TCP/SSL, certificate error
Hi All, I'm running TCP-based dsync replication on two dovecot nodes. Nowdays i tried to enable SSL (TCPS). I changed mail_replica prefix from tcp:* to tcps:* and added ssl=yes to the inet_listener. Then on running *doveadm sync* i'm getting the following message: " *doveadm(example at example.com <example at example.com>): Error: Couldn't initialize SSL context: Can't
2015 Nov 12
2
Problems after upgrade from 2.0 to 2.2
Hi all, after upgrade from some 2.0 version to 2.2.19 (debian) i face map login problems: # doveconf -n # 2.2.19 (ca91d540fd87): /etc/dovecot/dovecot.conf # Pigeonhole version 0.4.9 # OS: Linux 2.6.32-5-amd64 x86_64 Debian 8.2 ext4 auth_debug = yes auth_debug_passwords = yes auth_verbose = yes auth_verbose_passwords = plain debug_log_path = /var/log/dovecot-debug.log hostname = test.my.domain.de
2015 Jan 12
0
Dovecot replication over TCP/SSL, certificate error
Am 12.01.2015 um 13:29 schrieb Jonas Plitt: > *doveadm(example at example.com <example at example.com>): Error: Couldn't > initialize SSL context: Can't load CA certs from directory /etc/ssl/certs: > error:02001024:system library:fopen:File name too longdoveadm: Error: > Failed to iterate through some users*" > > this is my config (part): > > *ssl_cert =
2015 Feb 10
0
Slow replication
Hi, I'm running two Dovecot 2.2.9 Servers running replication. Users are the same. My Replication is very slow. Mails from Server one appear on Server two after 1-3 hours. Rarely i can see duplicated mails (Log message "Expunged message reappeared. Setting new UID"). This is my doveconf -n output: > # 2.2.9: /etc/dovecot/dovecot.conf > # OS: Linux 3.13.0-44-generic x86_64
2020 Jul 04
2
dovecot oauth
Hello, I'm trying to configure roundcube / dovecot to work with keycloak. I activated xoauth2 oauthbearer in dovecot. But a problem occurs when dovecot tries to contact the keycloak server (logs are below). My problem looks like this one: https://dovecot.org/pipermail/dovecot/2019-December/117768.html The response to this problem was about a bug in oauth driver
2009 Jul 20
2
Samba is deleting samba-passwords out of ldap-tree
Hello, I try to install a PDC with Samba 3.0.23 and openldap 2.3.27. I can join the domain with a win-xp-Machine, the User-Accounts are in ldap and looks like the following: dn: uid=ds,ou=people,dc=marco,dc=de userPassword: {crypt}RVp32Kd9mkUek sambaLogonTime: 0 sambaLogoffTime: 0 sambaPwdLastSet: 0 sambaProfilePath: \\homedirs\ds\.ntprofile sambaPwdCanChange: 0 sambaSID:
2010 Apr 08
1
ssh-add -s /usr/lib/opensc-pkcs11.so does not work
Dear friends, First, thanks for helping me on ssh default option for smartcards. I recompiled SSH from CVS and it seems to work. I still have problems with: ssh-add -s /usr/lib/opensc-pkcs11.so Enter passphrase for PKCS#11: (I enter PIN code) SSH_AGENT_FAILURE Could not add card: /usr/lib/opensc-pkcs11.so pkcs11-tool --slot 1 -O Public Key Object; RSA 2048 bits label: Public Key ID:
2016 Jun 15
0
https and self signed
On Jun 15, 2016, at 9:38 AM, Warren Young <wyml at etr-usa.com> wrote: > > On Jun 15, 2016, at 9:02 AM, Valeri Galtsev <galtsev at kicp.uchicago.edu> wrote: > >> I do not see neither starttls.com nor letsencrypt.org between Authorities >> certificates. > > That?s because they are not top-tier CAs. I forgot to mention that letsencrypt.com uses one of its
2016 Jun 15
1
https and self signed
On Wed, June 15, 2016 10:48 am, Warren Young wrote: > On Jun 15, 2016, at 9:38 AM, Warren Young <wyml at etr-usa.com> wrote: >> >> On Jun 15, 2016, at 9:02 AM, Valeri Galtsev <galtsev at kicp.uchicago.edu> >> wrote: >> >>> I do not see neither starttls.com nor letsencrypt.org between >>> Authorities >>> certificates. >>
2015 Nov 12
0
Problems after upgrade from 2.0 to 2.2
Hi, On 2015-11-12 08:03, Frank Rust wrote: > Hi all, > after upgrade from some 2.0 version to 2.2.19 (debian) i face map > login problems: > > # doveconf -n > # 2.2.19 (ca91d540fd87): /etc/dovecot/dovecot.conf > # Pigeonhole version 0.4.9 > # OS: Linux 2.6.32-5-amd64 x86_64 Debian 8.2 ext4 > auth_debug = yes > auth_debug_passwords = yes > auth_verbose = yes >
2015 Nov 12
1
Problems after upgrade from 2.0 to 2.2
Thanks a lot! This was added by a new debian package file! They added the 15-mailboxes.conf file with this input-namespace. It?s a bad thing. For changed configuration the installer asks which version, old or new to take, but new files are installed without confirmation. But that?s a debian problem, not dovecot. Best regards, Frank > Am 12.11.2015 um 08:58 schrieb Christian Kivalo
2012 May 08
2
Thunderbird STARTTLS error
Hello, the error is still present: May 8 19:47:18 opsys dovecot: imap-login: Disconnected (no auth attempts): rip=82.113.119.140, lip=78.46.216.126 Whenever I start a session with openssl to STARTTTL (Server: mail.opsys.de) the handshake is successfull. Also I am able to login to my account via 1 login. In Thunderbird port 993 for SSL/TLS works correct, only STARTTLS on port 143 isn't
2010 Apr 08
6
[Bug 1751] New: ssh-add -s /usr/lib/opensc-pkcs11.so does not work
https://bugzilla.mindrot.org/show_bug.cgi?id=1751 Summary: ssh-add -s /usr/lib/opensc-pkcs11.so does not work Product: Portable OpenSSH Version: 5.4p1 Platform: amd64 OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: Smartcard AssignedTo: unassigned-bugs at mindrot.org
2014 Nov 28
1
failed login message
thank you for guidance, just to recap the issue was about squirrelmail giving a wrong message : "connection dropped by imap server" instead of "invalid user or password" as advised i connected using command line on both my old and new servers, and have posted the details including the output of dovevcot -n. 1) command prompt login. i put wrong password telnet x.x.x.x 143
2007 Oct 11
2
CentOS 5 LiveCD better than the real one?
Folks, I am terribly puzzled by an issue reported as bug 2381 [http://bugs.centos.org/view.php?id=2381] ? definitely an upstream bug, as it does the same under X/OS 5 and StartCom 5. Simply put: Hibernation fails with horrendous I/O errors after swsusp starts dumping to swap. What bugs me is that hibernating from the CentOS 5 LiveCD *works*!!! (on the same hardware) How could I investigate to
2009 Dec 29
0
{SOLVED} Re: OT: What are the 2 openssl commands I need to use?
On Tue, Dec 29, 2009 at 12:36 PM, Lanny Marcus <lmmailinglists at gmail.com> wrote: > I looked on the openssl man page but am too dense with commands to > understand what I need to do..... ? Ran into problems generating a key > and CSR for SSL, ?because the web site is on a server with an old > Ensim Control Panel. ?Please someone knowledgeable, ?give me the > openssl commands
2017 Feb 17
0
Problem with Let's Encrypt Certificate
Hello, I had the same problem. LE is not in the CA list. Best Regards, On 17.02.2017 17:58, Bastian Sebode wrote: > Hello Folks, > > my StartCom SSL-Certificate expires soon and so I wanted to switch to > Let's Encrypt Certificates instead. Unfortunatelly Thunderbird seems not > to like it, although all -tested- other Clients work without any problems. > > When I
2017 Feb 20
2
Problem with Let's Encrypt Certificate
Hello Basti. Maybe you tried LE too early when it was not universally accepted as a trusted CA ? On Monday, February 20, 2017 2:22 PM, basti <basti at unix-solution.de> wrote: Hello, I had the same problem. LE is not in the CA list. Best Regards, On 17.02.2017 17:58, Bastian Sebode wrote: > Hello Folks, > > my StartCom SSL-Certificate expires soon and so I wanted to