In comp.mail.eudora.ms-windows, on Fri, 24 Aug 2018 05:45:05 -0500,
g...@rr.com wrote:
>I have been using Stunnel for over a year with Gmail and Eudora. This
>week I started getting errors trying to send emails in Eudora with
>Gmail. I happen to open the stunnel Log file and notice the following
>which implied the issue was Avast. There was a lot in the Log file and
>I was lucky to even see this. As soon as I turned off Avast Email
>protection then Gmail and Eudora started working again.
It's good of you to point out the value of the stunnel log.
>Is there is a better way to fix this than to turn off Avast email
Not afaik, but Eudora is different from most other email programs in
that it separates attachments from the emails and stores attachments in
their own directory. Therefore the regular antimalware protection for
any new file will also check attachments, and it's not needed to check
incoming mail.
You should also have "run executables" unchecked in Tools / Options
becasue malware can run that way too. I don't know the relationship of
email executables to antivirus programs like Avast.
Also, bear in mind that Avast will turn itself back on even after you
turn it off. I think this happens when new releases of it are
installed. If it's possible to uninstall the email portion of Avast, I
think that prevents that. That is possible with AVG, which was bought
by Avast within the last year or so.
>protection? I would like to have my incoming emails scanned but seem
>to remember I had to exclude Eudora before. I think one of the Avast
>updated much have turned it back on?
>
>Just another place to look for issues is the Log file of Stunnel. I
>had even made a point to update my Stunnel to the newest version
>before I found this.
>
>: Rejected by CERT at depth=1: OU=generated by Avast Antivirus for SSL/TLS scanning, O=Avast Web/Mail Shield, CN=Avast Web/Mail Shield Root
>2018.08.23 21:39:38 LOG3[0]: SSL_connect: 14090086: error:14090086:SSL
>routines:ssl3_get_server_certificate:certificate verify failed
>2018.08.23 21:39:38 LOG5[0]: Connection reset: 0 byte(s) sent to TLS,
>0 byte(s) sent to socket
Very interesting.
BTW, I've been using stunnel with Eudora for a year and it has required
no maintenance during that time. It's certainly not obsolete and I
don't think it's even obsolescent. It would be a parallel alternative
to the new version qcsll.dll, if that is really bug-free and some people
still report problems with it. I havenb't tried it at all because
stunnel works 100% for me.