Displaying 20 results from an estimated 9000 matches similar to: "Self-Signed Certificate issue"
2017 Sep 25
2
Dovecot and Self-signed issue
I use dovecot on several servers. One of them uses a self-signed cert,
it's just me.
It worked fine until yesterday when I upgraded my desktop (NOT the
server) to CentOS 7.4
Now thunderbird complains when it starts up, and won't let me confirm
the security exception.
On the server the following error occurs in the log:
Sep 25 20:17:49 librelamp dovecot: imap-login: Disconnected (no
2017 Sep 25
2
Dovecot and Self-signed issue
I'm not running any A/V software, and the same version of dovecot on
servers with CA signed certs (komodo) - the client connects to them just
fine.
On 09/25/2017 01:40 PM, Tony wrote:
> It does look like a client issue. Do you also have some kind of AV
> running? There are some AV software that can sometimes interfere with
> mail sessions. See if you might be running into a similar
2017 Sep 26
2
Dovecot and Self-signed issue
Hello Micheal,
this reminds me of something, that I experienced in the past. Why would
the server! complain "Unknown CA"? To test inspect the communication
with wireshark and look if the client sends a cert; or:
$ echo "a001 LOGOUT" | openssl s_client -msg -connect your.server:993
and grep for "CertificateRequest".
Do you have a certificate configured in your
2010 Jul 11
4
SSL / TLS Problem
Hi,
since I upgraded to the new Thunderbird version 3.1 I can't establish a
TLS/SSL connection anymore. But before the update Thunerbird was able to
establish an encrypted session ...
Maillog shows me the following now:
server dovecot: imap-login: Disconnected (no auth attempts):
rip=84.157.133.248, lip=192.168.1.100, TLS handshaking: SSL_accept()
failed: error:14094418:SSL
2010 Feb 18
1
using signed certificates for TLS/SSL
Hi,
I have, in one customer, a web server running on a Verisign-signed
certificate SSL certificate. Everything works fine, IE and Firefox
connects on https without asking anything, which usually happens on
self-signed certificates. I'm trying to use that certificate on dovecot,
but clients (Thunderbird basically) keeps saying the certificate is not
valid.
yes i'm using,
2013 Oct 30
2
Re: Using certtool to generate certificates for ESXi
Hi Daniel,
thanks for the reply - The procedure I use is the same as I use for
XenServer, and the certificate exchange works just fine. The only thing
I'm a bit unclear on, is the location of the CA cert, which in the case of
XenServer, I simply put it in /etc/pki/CA. And when I start the libvirtd
daemon, it successfully picks it up. If I put the Server key and cert in
/etc/vmware/ssl for
2016 May 04
2
Asterisk 1.8 secure SIP session only
Hello, I am trying to secure SIP session with TLS on Asterisk Server 1.8. I
keep getter an error,
== Problem setting up ssl connection: error:14094418:SSL
routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
[2016-05-04 09:31:17] WARNING[30032]: tcptls.c:254 handle_tcptls_connection:
FILE * open failed!
I tried both signed and self-signed cert to no avail.
Here is my Configuration:
Sip.conf
2013 Feb 22
2
problems with imaps
hi,
i'm using dovecot 1.2.15 with self signed certificates
using starttls on ports 110/143 works ok with thunderbird 10.0.12 (and i
guess most other clients)
using imaps on port 993 works with outlook 2002.
with thunderbird 10.0.12 i can't connect to port 993 and get errors in
the logs like
TLS: SSL_read() failed: error:14094412:SSL
routines:SSL3_READ_BYTES:sslv3 alert bad
2013 Oct 30
2
Using certtool to generate certificates for ESXi
Hello,
I'm using certtool to generate the server certificates for ESXi -
http://libvirt.org/remote.html#Remote_TLS_CA. I just copy the server
certificate and key as /etc/vmware/ssl/rui.crt and /etc/vmware/ssl/rui.key.
And then use virsh to connect from a CentOS 6.4 VM running on it - "virsh
-c esx://<esx IP>. I get the following error -
error: internal error curl_easy_perform()
2018 Sep 12
3
Server certificate verification error with Dovecot 2.3.2.1
I'm attempting to upgrade my Dovecot installation to 2.3.2.1. My SSL
certificate authority provides a bundle containing their CA, plus
intermediate CAs, which I configure using the 'ssl_ca' option. The
comments in the configuration file say to only set this when you're
requiring client certificates, which I'm not, but fetchmail complains
with a "Server certificate
2017 Sep 28
3
Thunderbird in CentOS 7.4
With the current Thunderbird I can not connect to one of my IMAP servers
that uses a self-signed cert. Virtually identical IMAP servers that use
CA signed certs work
I was a bit out of date when I updated to 7.4 and was running
Thunderbird 45.6.x and it worked.
When I connected from evolution (which I do not like) it worked.
When I connected with my laptop still running 45.6.x it works.
so
2007 Feb 05
2
SSL error is it due to a self certified certificate?
Hi I have set up dovecot with a self signed SSL certificate, created with
the mkcert.sh script.
Now I see the following in the log:
pop3-login: SSL_accept() failed: error:14094416:SSL
routines:SSL3_READ_BYTES:sslv3 alert certificate unknown [206.124.112.22]
pop3-login: Disconnected: rip=206.124.112.22, lip=204.3.153.71, TLS
handshake
Is this caused by my self certified certificates. Or is it
2006 Feb 08
1
New trick for old dogs
We have been using Samba for many years. The company has just switched from an NT domain to an Active Directory domain. The new server is running Windows Server 2003. We are having trouble configuring our Solaris 8 server so it can join the domain as a server. Just getting Samba to compile and link was interesting enough. This included downloading and compiling a new version of the BerkeleyDB,
2017 Sep 25
0
Dovecot and Self-signed issue
It does look like a client issue. Do you also have some kind of AV
running? There are some AV software that can sometimes interfere with
mail sessions. See if you might be running into a similar situation:
https://support.mozilla.org/en-US/questions/1066126
Cheers,
--
TC
On 9/25/17 1:27 PM, Michael A. Peters wrote:
> I use dovecot on several servers. One of them uses a self-signed cert,
>
2017 Sep 25
0
Dovecot and Self-signed issue
Definitely client issue, connecting via evolution works just fine.
So I suppose it is off the the thunderbird list. I like thunderbird better.
Only plugin I use is dkim validator and when I started thunderbird w/o
extensions - still had same issue.
But I think it is definitely not a dovecot problem.
On 09/25/2017 01:49 PM, Michael A. Peters wrote:
> I'm not running any A/V software,
2017 Sep 26
0
Dovecot and Self-signed issue
No, no certificate in thunderbird.
Work fine when running CentOS 7.3, laptop that still runs 7.3 works fine.
I'm going to attempt building the CentOS 7.3 thundirbird src.rpm in 7.4
and see if that fixes it, and if it does, file a bug report with rhel.
On 09/26/2017 01:17 AM, Peter Chiochetti wrote:
> Hello Micheal,
>
> this reminds me of something, that I experienced in the past.
2010 Jul 10
0
TLS handshaking error: unknown ca
I'm running Ubuntu 10.04, recently upgraded. My dovecot version is
1.2.9. My SSL/TLS authentication with dovecot from non-local IP's has
stopped working, and I can no longer access my mail securely. I have
changed all entries to refer to my server as "host". I am the only
user, and am OK with the a self-signed cert. When I try to connect
using Thunderbird, the certificate
2016 Oct 26
2
Problem setting up ssl connection
Hello
I keep getting the following error when trying to connect to the
Asterisk server using AMI :
$socket = fsockopen("tls://11.22.33.44","5039", $errno, $errstr, 5);
Erorr on CLI :
[Oct 26 14:38:19] ERROR[2992]: tcptls.c:609 handle_tcptls_connection:
Problem setting up ssl connection: error:14094418:SSL
routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
[Oct 26 14:38:19]
2019 Feb 18
3
Error sending email from client
Latest
So if I telnet into port 25 I am able to send an email to my gmail account
True it comes into my spam folder
But when I try sending via client where my server is I get error 4 6 5 configuration error
Also email I send to server are lost ???????
Pleas3 help
2016 Jun 17
2
https and self signed
On 17.06.2016 16:27, ????????? ???????? wrote:
> Walter H. ????? 2016-06-16 22:54:
>> On 16.06.2016 21:42, ????????? ???????? wrote:
>>>
>>> I don't think OCSP is critical for free certificates suitable for
>>> small businesses and personal sites.
>>>
>> this is philosophy;
>>
>> I'd say when you do it then do it good, else