Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
sasl authentication failed
290 views
Skip to first unread message
Tony Baldwin
Jan 9, 2012, 6:00:02 PM1/9/12
to
Hi,
I followed directions here:
http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
to set up postfix/dovecot to mail from my linode running squeeze.
I can now, either on that server or from home, collect mail from my
domain with mutt, but when I try to send mail, I get a warning that the
certificate hostname doesn't match the server,
and, even when choosing (o) accept once
// no (a) accept all option here //
I get
Sasl authentication failed.
The one thing that I question is this:
hostname on the server gives me
$hostnamethatIassigned
hostname -f on that server gives me
$hostnamethatIassigned.linode.com
so this is what I put for the FDQN, according to the tutorial.
But I've set up mail for the domain
mail.tonybaldwin.org
imap is working, smtp is not
But this is the first ever I have tried to set up a mail server, so I'm
at a loss.
Should I have entered my own domain for the fdqn?
I didn't think so, since I set my domain in the virtualhost for postfix.
But the certificate/hostname not matching makes me question this.
Any assistance will be appreciated.
Tony
--
http://tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/20120109225...@vulcan.linode.com
I followed directions here:
http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
to set up postfix/dovecot to mail from my linode running squeeze.
I can now, either on that server or from home, collect mail from my
domain with mutt, but when I try to send mail, I get a warning that the
certificate hostname doesn't match the server,
and, even when choosing (o) accept once
// no (a) accept all option here //
I get
Sasl authentication failed.
The one thing that I question is this:
hostname on the server gives me
$hostnamethatIassigned
hostname -f on that server gives me
$hostnamethatIassigned.linode.com
so this is what I put for the FDQN, according to the tutorial.
But I've set up mail for the domain
mail.tonybaldwin.org
imap is working, smtp is not
But this is the first ever I have tried to set up a mail server, so I'm
at a loss.
Should I have entered my own domain for the fdqn?
I didn't think so, since I set my domain in the virtualhost for postfix.
But the certificate/hostname not matching makes me question this.
Any assistance will be appreciated.
Tony
--
http://tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/20120109225...@vulcan.linode.com
Tony Baldwin
Jan 9, 2012, 8:00:01 PM1/9/12
to
server).
When I, say, try to send from this email at gmx.com,
I get a message saying that gmx contacted my server, but was refused
with:
Must issue a STARTTLS command first.
Now, I have successfully installed squirrelmail, and I see this very
same thing when I try to send a message from the webmail, too.
(Must issue a STARTTLS command).
When I try to send from that acct from mutt, I only get the
Sasl authentication failed
message.
tony
--
http://tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/20120110005...@vulcan.linode.com
http://tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Camaleón
Jan 10, 2012, 12:00:03 PM1/10/12
to
On Mon, 09 Jan 2012 17:51:13 -0500, Tony Baldwin wrote:
> I followed directions here:
> http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
> to set up postfix/dovecot to mail from my linode running squeeze.
>
> I can now, either on that server or from home, collect mail from my
> domain with mutt, but when I try to send mail, I get a warning that the
> certificate hostname doesn't match the server, and, even when choosing
> (o) accept once // no (a) accept all option here //
> I get
> Sasl authentication failed.
>
> The one thing that I question is this: hostname on the server gives me
> $hostnamethatIassigned
> hostname -f on that server gives me
> $hostnamethatIassigned.linode.com
> so this is what I put for the FDQN, according to the tutorial. But I've
> set up mail for the domain
> mail.tonybaldwin.org
>
> imap is working, smtp is not
> But this is the first ever I have tried to set up a mail server, so I'm
> at a loss.
> Should I have entered my own domain for the fdqn? I didn't think so,
> since I set my domain in the virtualhost for postfix. But the
> certificate/hostname not matching makes me question this.
>
> Any assistance will be appreciated.
Mmmm, my guess is that your are having problems (or at least "one" of the
> I followed directions here:
> http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
> to set up postfix/dovecot to mail from my linode running squeeze.
>
> I can now, either on that server or from home, collect mail from my
> domain with mutt, but when I try to send mail, I get a warning that the
> certificate hostname doesn't match the server, and, even when choosing
> (o) accept once // no (a) accept all option here //
> I get
> Sasl authentication failed.
>
> The one thing that I question is this: hostname on the server gives me
> $hostnamethatIassigned
> hostname -f on that server gives me
> $hostnamethatIassigned.linode.com
> so this is what I put for the FDQN, according to the tutorial. But I've
> set up mail for the domain
> mail.tonybaldwin.org
>
> imap is working, smtp is not
> But this is the first ever I have tried to set up a mail server, so I'm
> at a loss.
> Should I have entered my own domain for the fdqn? I didn't think so,
> since I set my domain in the virtualhost for postfix. But the
> certificate/hostname not matching makes me question this.
>
> Any assistance will be appreciated.
problems, the other can be indeed with saslauth :-) ) with the SSL
certificate you have generated, described in this step of your guide¹.
To verify this point, test if your smtp is working fine (port 25, no SSL)
and post here the results.
Also, review your Postfix logs (omit sensitive data if you post them here),
they're usually the best source for solving problems :-)
¹http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_create-an-ssl-certificate-for-postfix
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Tony Baldwin
Jan 10, 2012, 1:10:03 PM1/10/12
to
>
> To verify this point, test if your smtp is working fine (port 25, no SSL)
> and post here the results.
Okay, at this point, I am getting different errors.
> To verify this point, test if your smtp is working fine (port 25, no SSL)
> and post here the results.
I think I resolved the sasl issue by correcting an error I had made in /etc/pam.d/smtpd
But, now, if I telnet to localhost 25, either the connection drops immediately, or
anything I try to do (like elho localhost) hangs for a long time, and then, again,
just dumps the connection without result.
Oddly, before correcting the error in /etc/pam.d/smtpd
I would get expected results with
telnet localhost 25
ehlo localhost
(such as indication
250 - STARTTLS
etc.
)
but now, no joy...weird.
> Also, review your Postfix logs (omit sensitive data if you post them here),
> they're usually the best source for solving problems :-)
>
I was using precisely these instructions, and believe my cert is correct (I've redone it about 20 times now, too).
I've gone over this whole tutorial like 20 times now.
One thing:
Initially my fqdn was set at server.linode.com, because I had somehow set it before my domain was resolving, or whatever.
but I've changed it (echo server.tonybaldwin.org > /etc/hostname, hostname -F /etc/hostname),
but when I've done dpkg --reconfigure postfix, it still wants to do
server.linode.com
and I fix that by hand in main.cf, and anywhere else I find it
then restart postfix.
This is the only thing odd I can identify.
I pasted some of the errors from /var/log/mail.* here
http://tonybaldwin.me/paste/index.php?6
I could paste any of the relevant other files (etc/postfix/main.cf or whatever) if it would help.
Dovecot seems to be fine, I believe, so at this point, I do believe it's just something in postfix
(postfix handles the smtp, yes?)
Because i can connect with imap, just can't send/receive over smtp.
I have made like 3 dummy accts, and they can mail each other on the server with mailx,
then read that in mutt or squirrelmail over imap, but none can send or receive to/from the exterior.
thanks
tony
--
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/2012011018...@deathstar.hsd1.ct.comcast.net
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Tony Baldwin
Jan 10, 2012, 1:20:02 PM1/10/12
to
On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
> > On Mon, 09 Jan 2012 17:51:13 -0500, Tony Baldwin wrote:
> >
> > > I followed directions here:
> > > http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
> > > to set up postfix/dovecot to mail from my linode running squeeze.
> > >
clippage
> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
> > On Mon, 09 Jan 2012 17:51:13 -0500, Tony Baldwin wrote:
> >
> > > I followed directions here:
> > > http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_configure-saslauthd-to-use-mysql
> > > to set up postfix/dovecot to mail from my linode running squeeze.
> > >
http://tonybaldwin.me/paste/index.php?5
--
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Camaleón
Jan 10, 2012, 4:40:03 PM1/10/12
to
On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
>> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
(...)
> On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
>> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
>> > Mmmm, my guess is that your are having problems (or at least "one" of
>> > the problems, the other can be indeed with saslauth :-) ) with the
>> > SSL certificate you have generated, described in this step of your
>> >
>> > To verify this point, test if your smtp is working fine (port 25, no
>> > SSL) and post here the results.
>>
>> Okay, at this point, I am getting different errors. I think I resolved
>> the sasl issue by correcting an error I had made in /etc/pam.d/smtpd
>>
>> But, now, if I telnet to localhost 25, either the connection drops
>> immediately, or anything I try to do (like elho localhost) hangs for a
>> long time, and then, again, just dumps the connection without result.
>>
>> Oddly, before correcting the error in /etc/pam.d/smtpd I would get
>> expected results with
>> telnet localhost 25
>> ehlo localhost
>>
>> (such as indication
>> 250 - STARTTLS
>> etc.
>> )
>>
>> but now, no joy...weird.
What kind of change/correction did you do at the "/etc/pam.d/smtpd" file?
>> > To verify this point, test if your smtp is working fine (port 25, no
>> > SSL) and post here the results.
>>
>> Okay, at this point, I am getting different errors. I think I resolved
>> the sasl issue by correcting an error I had made in /etc/pam.d/smtpd
>>
>> But, now, if I telnet to localhost 25, either the connection drops
>> immediately, or anything I try to do (like elho localhost) hangs for a
>> long time, and then, again, just dumps the connection without result.
>>
>> Oddly, before correcting the error in /etc/pam.d/smtpd I would get
>> expected results with
>> telnet localhost 25
>> ehlo localhost
>>
>> (such as indication
>> 250 - STARTTLS
>> etc.
>> )
>>
>> but now, no joy...weird.
>> > Also, review your Postfix logs (omit sensitive data if you post them
>> > here), they're usually the best source for solving problems :-)
>> >
>>
>> I was using precisely these instructions, and believe my cert is
>> correct (I've redone it about 20 times now, too). I've gone over this
>> whole tutorial like 20 times now.
When generating the SSL cert you only have to care about the domain name,
>> I was using precisely these instructions, and believe my cert is
>> correct (I've redone it about 20 times now, too). I've gone over this
>> whole tutorial like 20 times now.
it has to match your current Postfix domain name to avoid "mismatching"
warnings on the client side.
As stated in the guide:
***
Be sure to enter the fully qualified domain name you used for the system
mailname in place of "server.example.com".
***
>> One thing:
>> Initially my fqdn was set at server.linode.com, because I had somehow
>> set it before my domain was resolving, or whatever. but I've changed it
>> (echo server.tonybaldwin.org > /etc/hostname, hostname -F
>> /etc/hostname), but when I've done dpkg --reconfigure postfix, it still
>> wants to do server.linode.com
>> and I fix that by hand in main.cf, and anywhere else I find it then
>> restart postfix.
>> This is the only thing odd I can identify.
default "myhostname" paramenter. Run "postconf -d | grep myhostname" to
get the current value.
Hey, you have to correct that, it's a fatal error (Postfix quits).
***
(none) postfix/smtpd[22358]: fatal: parameter "smtpd_recipient_restrictions": specify at least one working instance of: check_relay_domains, reject_unauth_destination, reject, defer or defer_if_permit
***
Edit your "smtpd_recipient_restrictions" accordingly. Let's see:
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
It seems right... check for trailing whitespaces and also for any collision
with "/etc/postfif/master.cf" (variables have to be defined only at one place).
>> I could paste any of the relevant other files (etc/postfix/main.cf or
>> whatever) if it would help.
>
> I went ahead and pasted my main.cf
> http://tonybaldwin.me/paste/index.php?5
#myorigin = /etc/mailname
Because I prefer to use:
myhostname = server.example.com
To do not mix the linux system hostname with Postfix e-mail service.
But I'd say the hostname is at this point irrelevant, the big error is
that Postfix service is exiting because of the above warning.
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Tony Baldwin
Jan 10, 2012, 5:30:03 PM1/10/12
to
On Tue, Jan 10, 2012 at 09:35:58PM +0000, Camaleón wrote:
> On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
>
> > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
>
> (...)
>
> On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
>
> > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
>
> (...)
>
> >> Okay, at this point, I am getting different errors. I think I resolved
> >> the sasl issue by correcting an error I had made in /etc/pam.d/smtpd
> >>
> >> But, now, if I telnet to localhost 25, either the connection drops
> >> immediately, or anything I try to do (like elho localhost) hangs for a
> >> long time, and then, again, just dumps the connection without result.
> >>
> >> Oddly, before correcting the error in /etc/pam.d/smtpd I would get
> >> expected results with
> >> telnet localhost 25
> >> ehlo localhost
> >>
> >> (such as indication
> >> 250 - STARTTLS
> >> etc.
> >> )
> >>
> >> but now, no joy...weird.
>
> >> the sasl issue by correcting an error I had made in /etc/pam.d/smtpd
> >>
> >> But, now, if I telnet to localhost 25, either the connection drops
> >> immediately, or anything I try to do (like elho localhost) hangs for a
> >> long time, and then, again, just dumps the connection without result.
> >>
> >> Oddly, before correcting the error in /etc/pam.d/smtpd I would get
> >> expected results with
> >> telnet localhost 25
> >> ehlo localhost
> >>
> >> (such as indication
> >> 250 - STARTTLS
> >> etc.
> >> )
> >>
> >> but now, no joy...weird.
>
> >> correct (I've redone it about 20 times now, too). I've gone over this
> >> whole tutorial like 20 times now.
>
> >> whole tutorial like 20 times now.
>
> "dpkg --reconfigure postfix" will use your current "hostname" as the
> default "myhostname" paramenter. Run "postconf -d | grep myhostname" to
> get the current value.
>
I did this again (dpgk-reconfigure postfix, not dpkg --reconfigure),
> default "myhostname" paramenter. Run "postconf -d | grep myhostname" to
> get the current value.
>
this is from tail /var/log/mail.err
Jan 10 15:28:27 vulcan postfix/smtpd[7515]: fatal: unexpected command-line argument: #
Jan 10 16:45:37 vulcan postfix/smtpd[7714]: fatal: unexpected command-line argument: #
Jan 10 17:12:57 vulcan postfix/smtpd[8180]: fatal: unexpected command-line argument: #
It's the only message I'm getting now.
I don't know where the unexpectec command-line argument is.
There is no /etc/postfix/smtpd
but, rather postfix/sasl/smtpd
and I've checked that against the tutorial, and it looks correct.
Should there be such a file in /etc/postfix/smtpd
not just in /etc/postfix/sasl/smtpd
?
> ***
> (none) postfix/smtpd[22358]: fatal: parameter "smtpd_recipient_restrictions": specify at least one working instance of: check_relay_domains, reject_unauth_destination, reject, defer or defer_if_permit
reject _unauth_destination (should have been without that space).
>
> Well, in my Postfix I have commented:
>
> #myorigin = /etc/mailname
>
> Because I prefer to use:
>
> myhostname = server.example.com
>
> To do not mix the linux system hostname with Postfix e-mail service.
>
> But I'd say the hostname is at this point irrelevant, the big error is
> that Postfix service is exiting because of the above warning.
also, tail /var/log/mail.info shows
Jan 10 17:12:57 vulcan postfix/smtpd[8180]: fatal: unexpected command-line argument: #
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: process /usr/lib/postfix/smtpd pid 8180 exit status 1
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling
Jan 10 17:13:03 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=519/1868
tail /var/log/mail.log gives
Jan 10 16:45:37 vulcan postfix/smtpd[7714]: fatal: unexpected command-line argument: #
Jan 10 16:45:38 vulcan postfix/master[7492]: warning: process /usr/lib/postfix/smtpd pid 7714 exit status 1
Jan 10 16:45:38 vulcan postfix/master[7492]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling
Jan 10 17:10:49 vulcan postfix/master[7492]: terminating on signal 15
Jan 10 17:11:20 vulcan postfix/master[8143]: daemon started -- version 2.7.1, configuration /etc/postfix
Jan 10 17:11:49 vulcan dovecot: imap-login: Login: user=<to...@tonybaldwin.org>, method=PLAIN, rip=66.228.33.98, lip=66.228.33.98, TLS
Jan 10 17:12:57 vulcan postfix/smtpd[8180]: fatal: unexpected command-line argument: #
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: process /usr/lib/postfix/smtpd pid 8180 exit status 1
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling
Jan 10 17:13:03 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=519/1868
and /var/log/mail.warn shows
Jan 10 16:45:37 vulcan postfix/smtpd[7714]: fatal: unexpected command-line argument: #
Jan 10 16:45:38 vulcan postfix/master[7492]: warning: process /usr/lib/postfix/smtpd pid 7714 exit status 1
Jan 10 16:45:38 vulcan postfix/master[7492]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling
Jan 10 17:12:57 vulcan postfix/smtpd[8180]: fatal: unexpected command-line argument: #
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: process /usr/lib/postfix/smtpd pid 8180 exit status 1
Jan 10 17:12:58 vulcan postfix/master[8143]: warning: /usr/lib/postfix/smtpd: bad command startup -- throttling
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/20120110222...@deathstar.hsd1.ct.comcast.net
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Tony Baldwin
Jan 10, 2012, 8:10:01 PM1/10/12
to
On Tue, Jan 10, 2012 at 08:01:17PM -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
>
> I uninstalled postfix, dovecot, reinstalled, and went through the whole tutorial again.
> Now, I think the hostname issues are all resolved, but I still can't send/receive mail.
Or not.
My certificate says it is from
vulcan.linode.com
I don't know where it is getting this.
I have my hostname set to
vulcan
hostname -f gives
tonybaldwin.org
When I configured postfix, I gave it tonybaldwin.org
tonybaldwin.org is what shows in my main.cf
I do know understand why anything says vulcan.linode.com
> If I send mail from an external acct., I get no bounce or error or nothing,b
> but nothing shows up on my mail server.
>
> If I try to send out, I just get
> failed to connect to tonybaldwin.org, connection refused.
>
> I notice that when I do
> telnet localhost 25
> I get
> ehlo localhost
> 250-tonybaldwin.org Hello localhost.localdomain [127.0.0.1], pleased to meet you
> 250-ENHANCEDSTATUSCODES
> 250-PIPELINING
> 250-EXPN
> 250-VERB
> 250-8BITMIME
> 250-SIZE
> 250-DSN
> 250-ETRN
> 250-AUTH DIGEST-MD5 CRAM-MD5
> 250-DELIVERBY
> 250 HELP
>
> There is no 250-STARTTLS
> which I had the first time around (when sasl auth kept failing).
>
> I'm totally at a loss and confused here.
>
> in tail /var/log/mail.err I see
> Jan 10 19:36:27 vulcan sm-mta[11947]: q0B0aRM6011947: SYSERR(root): collect: Cannot write ./dfq0B0aRM6011947 (bfcommit, uid=0, gid=113): No such file or directory
> Jan 10 19:40:37 vulcan postfix/master[12135]: fatal: bind 0.0.0.0 port 25: Address already in use
> Jan 10 19:41:17 vulcan postfix/master[12307]: fatal: bind 0.0.0.0 port 25: Address already in use
> Jan 10 19:49:49 vulcan sm-mta[12666]: q0B0nnkM012666: SYSERR(root): collect: Cannot write ./dfq0B0nnkM012666 (bfcommit, uid=0, gid=113): No such file or directory
> Jan 10 19:54:56 vulcan postfix/master[12824]: fatal: bind 0.0.0.0 port 25: Address already in use
>
> I don't know what could be using port 25,
> nor what this "Cannot write ./dfwhatever" is all about.
>
> tail /var/log/mail.log shows
> Jan 10 19:55:01 vulcan dovecot: Dovecot v1.2.15 starting up (core dumps disabled)
> Jan 10 19:55:01 vulcan dovecot: auth-worker(default): mysql: Connected to 127.0.0.1 (mail)
> Jan 10 19:55:12 vulcan sm-mta[12855]: q0B0t5oM012855: localhost.localdomain [127.0.0.1] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA-v4
> Jan 10 19:55:45 vulcan dovecot: imap-login: Login: user=<to...@tonybaldwin.org>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
> Jan 10 19:55:45 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=85/681
> Jan 10 19:59:29 vulcan dovecot: imap-login: Login: user=<to...@tonybaldwin.org>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
> Jan 10 19:59:29 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=85/681
>
> I think that looks good, no?
> I can connect to imap.
> just not smtp?
>
> ./tony
> On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
> > On Tue, Jan 10, 2012 at 09:35:58PM +0000, Camale�n wrote:
> > > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
> > >
> > > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> > > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
> > >
> > > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> > > >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camale�n wrote:
> > >
> > > (...)
> > >
> > > >> Okay, at this point, I am getting different errors. I think I resolved
> Crikey...
> > >
> > > (...)
> > >
> > > >> Okay, at this point, I am getting different errors. I think I resolved
>
> I uninstalled postfix, dovecot, reinstalled, and went through the whole tutorial again.
> Now, I think the hostname issues are all resolved, but I still can't send/receive mail.
Or not.
My certificate says it is from
vulcan.linode.com
I don't know where it is getting this.
I have my hostname set to
vulcan
hostname -f gives
tonybaldwin.org
When I configured postfix, I gave it tonybaldwin.org
tonybaldwin.org is what shows in my main.cf
I do know understand why anything says vulcan.linode.com
> If I send mail from an external acct., I get no bounce or error or nothing,b
> but nothing shows up on my mail server.
>
> If I try to send out, I just get
> failed to connect to tonybaldwin.org, connection refused.
>
> I notice that when I do
> telnet localhost 25
> I get
> ehlo localhost
> 250-tonybaldwin.org Hello localhost.localdomain [127.0.0.1], pleased to meet you
> 250-ENHANCEDSTATUSCODES
> 250-PIPELINING
> 250-EXPN
> 250-VERB
> 250-8BITMIME
> 250-SIZE
> 250-DSN
> 250-ETRN
> 250-AUTH DIGEST-MD5 CRAM-MD5
> 250-DELIVERBY
> 250 HELP
>
> There is no 250-STARTTLS
> which I had the first time around (when sasl auth kept failing).
>
> I'm totally at a loss and confused here.
>
> in tail /var/log/mail.err I see
> Jan 10 19:36:27 vulcan sm-mta[11947]: q0B0aRM6011947: SYSERR(root): collect: Cannot write ./dfq0B0aRM6011947 (bfcommit, uid=0, gid=113): No such file or directory
> Jan 10 19:40:37 vulcan postfix/master[12135]: fatal: bind 0.0.0.0 port 25: Address already in use
> Jan 10 19:41:17 vulcan postfix/master[12307]: fatal: bind 0.0.0.0 port 25: Address already in use
> Jan 10 19:49:49 vulcan sm-mta[12666]: q0B0nnkM012666: SYSERR(root): collect: Cannot write ./dfq0B0nnkM012666 (bfcommit, uid=0, gid=113): No such file or directory
> Jan 10 19:54:56 vulcan postfix/master[12824]: fatal: bind 0.0.0.0 port 25: Address already in use
>
> I don't know what could be using port 25,
> nor what this "Cannot write ./dfwhatever" is all about.
>
> tail /var/log/mail.log shows
> Jan 10 19:55:01 vulcan dovecot: Dovecot v1.2.15 starting up (core dumps disabled)
> Jan 10 19:55:01 vulcan dovecot: auth-worker(default): mysql: Connected to 127.0.0.1 (mail)
> Jan 10 19:55:12 vulcan sm-mta[12855]: q0B0t5oM012855: localhost.localdomain [127.0.0.1] did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA-v4
> Jan 10 19:55:45 vulcan dovecot: imap-login: Login: user=<to...@tonybaldwin.org>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
> Jan 10 19:55:45 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=85/681
> Jan 10 19:59:29 vulcan dovecot: imap-login: Login: user=<to...@tonybaldwin.org>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1, secured
> Jan 10 19:59:29 vulcan dovecot: IMAP(to...@tonybaldwin.org): Disconnected: Logged out bytes=85/681
>
> I think that looks good, no?
> I can connect to imap.
> just not smtp?
>
> ./tony
>
> --
> http://www.tonybaldwin.me
> all tony, all the time
>
>
> --
> To UNSUBSCRIBE, email to debian-us...@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
> Archive: http://lists.debian.org/2012011101...@deathstar.hsd1.ct.comcast.net
> --
> http://www.tonybaldwin.me
> all tony, all the time
>
>
> --
> To UNSUBSCRIBE, email to debian-us...@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
>
--
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/2012011101...@deathstar.hsd1.ct.comcast.net
--
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Tony Baldwin
Jan 10, 2012, 8:10:01 PM1/10/12
to
On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 09:35:58PM +0000, Camale�n wrote:
> > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
> >
> > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
> >
> > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
> > >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camale�n wrote:
> >
> > (...)
> >
> > >> Okay, at this point, I am getting different errors. I think I resolved
> >
> > (...)
> >
> > >> Okay, at this point, I am getting different errors. I think I resolved
Crikey...
I uninstalled postfix, dovecot, reinstalled, and went through the whole tutorial again.
Now, I think the hostname issues are all resolved, but I still can't send/receive mail.
I uninstalled postfix, dovecot, reinstalled, and went through the whole tutorial again.
Now, I think the hostname issues are all resolved, but I still can't send/receive mail.
--
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/2012011101...@deathstar.hsd1.ct.comcast.net
http://www.tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Camaleón
Jan 14, 2012, 12:50:02 PM1/14/12
to
On Tue, 10 Jan 2012 20:09:21 -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 08:01:17PM -0500, Tony Baldwin wrote:
>> On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
> On Tue, Jan 10, 2012 at 08:01:17PM -0500, Tony Baldwin wrote:
>> On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
>> > On Tue, Jan 10, 2012 at 09:35:58PM +0000, Camaleón wrote:
>> > > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
>> > >
>> > > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
>> > > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
>> > >
>> > > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
>> > > >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
>> > >
>> > > (...)
>> > >
>> > > >> Okay, at this point, I am getting different errors. I think I
>> > > >> resolved
>> Crikey...
>>
>> I uninstalled postfix, dovecot, reinstalled, and went through the whole
>> tutorial again. Now, I think the hostname issues are all resolved, but
>> I still can't send/receive mail.
>
> Or not.
>
> My certificate says it is from
> vulcan.linode.com
> I don't know where it is getting this. I have my hostname set to
> vulcan
> hostname -f gives
> tonybaldwin.org
Tony, I would forget about the SSL part until you have configured your
>> > >
>> > > (...)
>> > >
>> > > >> Okay, at this point, I am getting different errors. I think I
>> > > >> resolved
>> Crikey...
>>
>> I uninstalled postfix, dovecot, reinstalled, and went through the whole
>> tutorial again. Now, I think the hostname issues are all resolved, but
>> I still can't send/receive mail.
>
> Or not.
>
> My certificate says it is from
> vulcan.linode.com
> I don't know where it is getting this. I have my hostname set to
> vulcan
> hostname -f gives
> tonybaldwin.org
Postfix to be in a workable state (sending/receiving e-mails with no
errors). Afterwards, you can start to setup the SSL certificate but not
before.
> When I configured postfix, I gave it tonybaldwin.org tonybaldwin.org is
> what shows in my main.cf I do know understand why anything says
> vulcan.linode.com
>> If I send mail from an external acct., I get no bounce or error or
>> nothing,b but nothing shows up on my mail server.
>>
>> If I try to send out, I just get
>> failed to connect to tonybaldwin.org, connection refused.
>> I notice that when I do
>> telnet localhost 25
>> I get
>> ehlo localhost
>> 250-tonybaldwin.org Hello localhost.localdomain [127.0.0.1], pleased to
>> meet you 250-ENHANCEDSTATUSCODES
>> 250-PIPELINING
>> 250-EXPN
>> 250-VERB
>> 250-8BITMIME
>> 250-SIZE
>> 250-DSN
>> 250-ETRN
>> 250-AUTH DIGEST-MD5 CRAM-MD5
>> 250-DELIVERBY
>> 250 HELP
>>
>> There is no 250-STARTTLS
>> which I had the first time around (when sasl auth kept failing).
>> I'm totally at a loss and confused here.
>>
>> in tail /var/log/mail.err I see
>> Jan 10 19:36:27 vulcan sm-mta[11947]: q0B0aRM6011947: SYSERR(root): collect: Cannot write ./dfq0B0aRM6011947 (bfcommit, uid=0, gid=113): No such file or directory
>> Jan 10 19:40:37 vulcan postfix/master[12135]: fatal: bind 0.0.0.0 port 25: Address already in use
>> Jan 10 19:41:17 vulcan postfix/master[12307]: fatal: bind 0.0.0.0 port 25: Address already in use
>> Jan 10 19:49:49 vulcan sm-mta[12666]: q0B0nnkM012666: SYSERR(root): collect: Cannot write ./dfq0B0nnkM012666 (bfcommit, uid=0, gid=113): No such file or directory
>> Jan 10 19:54:56 vulcan postfix/master[12824]: fatal: bind 0.0.0.0 port 25: Address already in use
>>
>> I don't know what could be using port 25,
> nor what this "Cannot write ./dfwhatever" is all about.
disable one of them (I would recommend to keep Postfix ;-) )
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
tony baldwin
Jan 14, 2012, 3:30:01 PM1/14/12
to
On Sat, January 14, 2012 12:41 pm, Camale�n wrote:
> On Tue, 10 Jan 2012 20:09:21 -0500, Tony Baldwin wrote:
>
>> On Tue, Jan 10, 2012 at 08:01:17PM -0500, Tony Baldwin wrote:
>>> On Tue, Jan 10, 2012 at 05:21:24PM -0500, Tony Baldwin wrote:
>>> > On Tue, Jan 10, 2012 at 09:35:58PM +0000, Camaleón wrote:
>>> > > On Tue, 10 Jan 2012 13:12:25 -0500, Tony Baldwin wrote:
>>> > >
>>> > > > On Tue, Jan 10, 2012 at 01:05:16PM -0500, Tony Baldwin wrote:
>>> > > >> On Tue, Jan 10, 2012 at 04:58:06PM +0000, Camaleón wrote:
>>> > >
>>> > > (...)
>>> > >
>>> > > >> Okay, at this point, I am getting different errors. I think I
>>> > > >> resolved
>>> Crikey...
>>>
>
> Tony, I would forget about the SSL part until you have configured your
> Postfix to be in a workable state (sending/receiving e-mails with no
> errors). Afterwards, you can start to setup the SSL certificate but not
> before.
>
I do have it working now, but the cert is still wrong.
> Postfix to be in a workable state (sending/receiving e-mails with no
> errors). Afterwards, you can start to setup the SSL certificate but not
> before.
>
>> When I configured postfix, I gave it tonybaldwin.org tonybaldwin.org is
>> what shows in my main.cf I do know understand why anything says
>> vulcan.linode.com
>
> This can come from SSL certificate file :-?
my hostname set as vulcan.tonybaldwin.org
So, when I set up mutt at home, my laptop, etc., I see some error to the
effect that the cert is from vulcan.linode.com, which disagrees with the
host, vulcan.tonybaldwin.org.
I just choose "(a) accept always", and it works, but it seems to me it
would be better to have the cert correct.
As far as the rest, it seems there was some ghost sendmail process hogging
port 25. I just killed that pid and restarted postfix and it works now.
./tony
--
http://tonybaldwin.me
all tony, all the time
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/e2d6fb38aa87ba81a115...@tonybaldwin.org
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Camaleón
Jan 14, 2012, 5:00:02 PM1/14/12
to
On Sat, 14 Jan 2012 15:26:30 -0500, tony baldwin wrote:
> On Sat, January 14, 2012 12:41 pm, Camale�n wrote:
(...)
> On Sat, January 14, 2012 12:41 pm, Camale�n wrote:
>> Tony, I would forget about the SSL part until you have configured your
>> Postfix to be in a workable state (sending/receiving e-mails with no
>> errors). Afterwards, you can start to setup the SSL certificate but not
>> before.
>>
>>
> I do have it working now, but the cert is still wrong.
>>> When I configured postfix, I gave it tonybaldwin.org tonybaldwin.org
>>> is what shows in my main.cf I do know understand why anything says
>>> vulcan.linode.com
>>
>> This can come from SSL certificate file :-?
>
> yes, the cert says it is from vulcan.linode.com, while I am certain I
> have my hostname set as vulcan.tonybaldwin.org
You have to ensure that you created the certificate with the correct data.
To see how it looks like you can:
***
openssl x509 -in /path/to/cert_file -noout -text
***
The "CN=" field has to be "vulcan.tonybaldwin.org", if not I would redo
again that specific step:
http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_create-an-ssl-certificate-for-postfix
Put special care when the openssl wizard asks for the "Common Name (eg,
YOUR name) []:", here you have to write "vulcan.tonybaldwin.org".
> So, when I set up mutt at home, my laptop, etc., I see some error to
> the effect that the cert is from vulcan.linode.com, which disagrees
> with the host, vulcan.tonybaldwin.org.
> I just choose "(a) accept always", and it works, but it seems to me it
> would be better to have the cert correct.
However, unless you use a certificate coming from one of the authorized
companies you will still see a warning about its validity when connecting
from another computer.
> As far as the rest, it seems there was some ghost sendmail process
> hogging port 25. I just killed that pid and restarted postfix and it
> works now.
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Camaleón
Jan 17, 2012, 10:50:02 AM1/17/12
to
El 2012-01-16 a las 14:40 -0500, tony baldwin escribió:
(resending to the list)
> On Sat, January 14, 2012 4:55 pm, Camaleón wrote:
> > On Sat, 14 Jan 2012 15:26:30 -0500, tony baldwin wrote:
> >
> >> On Sat, January 14, 2012 12:41 pm, Camaleón wrote:
> >
> > (...)
> >
> >>> Tony, I would forget about the SSL part until you have configured your
> >>> Postfix to be in a workable state (sending/receiving e-mails with no
> >>> errors). Afterwards, you can start to setup the SSL certificate but not
> >>> before.
> >>>
> >>>
> >> I do have it working now, but the cert is still wrong.
> >
> > Okay, let's focus on that now.
> >
> >>>> When I configured postfix, I gave it tonybaldwin.org tonybaldwin.org
> >>>> is what shows in my main.cf I do know understand why anything says
> >>>> vulcan.linode.com
> >>>
> >>> This can come from SSL certificate file :-?
> >>
> >> yes, the cert says it is from vulcan.linode.com, while I am certain I
> >> have my hostname set as vulcan.tonybaldwin.org
> >
> > Your hostname (whatever is set to) has no effect on the SSL cert file.
> > You have to ensure that you created the certificate with the correct data.
> >
> > To see how it looks like you can:
> >
> > ***
> > openssl x509 -in /path/to/cert_file -noout -text
> > ***
>
> When I do the above, I get
> openssl x509 -in smtpd.cert -noout -text
> Certificate:
> Data:
> Version: 3 (0x2)
> Serial Number:
> encrypted stuff
> Signature Algorithm: sha1WithRSAEncryption
> Issuer: C=US, ST=Connecticut, L=New Haven, O=Tony Baldwin, OU=web
> mail, CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> Validity
> Not Before: Jan 11 01:06:15 2012 GMT
> Not After : Jan 10 01:06:15 2013 GMT
> Subject: C=US, ST=Connecticut, L=New Haven, O=Tony Baldwin, OU=web
> mail, CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> Subject Public Key Info:
> Public Key Algorithm: rsaEncryption
> RSA Public Key: (2048 bit)
> Modulus (2048 bit):
> encrypted stuff here...
>
> Exponent: 65537 (0x10001)
> X509v3 extensions:
> X509v3 Subject Key Identifier:
> encrypted stuff here
> X509v3 Authority Key Identifier:
> keyid:encrypted stuff here
> DirName:/C=US/ST=Connecticut/L=New Haven/O=Tony
> Baldwin/OU=web
> mail/CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> serial:encrypted stuff
>
> X509v3 Basic Constraints:
> CA:TRUE
> Signature Algorithm: sha1WithRSAEncryption
> encrypted stuff here...
> from vulcan.linode.com
Mmm, yes, the cert file seems to contain the right data.
> > http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_create-an-ssl-certificate-for-postfix
> >
>
> I did this probably a dozen times.
Okay :-)
> > Put special care when the openssl wizard asks for the "Common Name (eg,
> > YOUR name) []:", here you have to write "vulcan.tonybaldwin.org".
> >
>
> I swear I did this all dozen times.
Good X-)
> >> So, when I set up mutt at home, my laptop, etc., I see some error to
> >> the effect that the cert is from vulcan.linode.com, which disagrees
> >> with the host, vulcan.tonybaldwin.org.
> >> I just choose "(a) accept always", and it works, but it seems to me it
> >> would be better to have the cert correct.
> >
> > Sure, having the SSL cert file with the right data on it :-P
> >
> > However, unless you use a certificate coming from one of the authorized
> > companies you will still see a warning about its validity when connecting
> > from another computer.
>
> Maybe it doesn't matter, since I'm the only using mail on this server, and
> it's working for me as is, but I'd like to understand why the cert appears
> to have incorrect data, despite the parameters I passed to openssl.
I would run more tests, e.g.:
1/ Connect from another MUA (Thunderbird/Icedobe/Evolution/whatever)
and check if the error also appears from here.
2/ Run Mutt in debug mode (mutt -d 2), it will log to "~/.muttdebug0".
If you are sending the log file or upload to some place, remember to delete
any sensitive data which can contain.
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
Archive: http://lists.debian.org/2012011715...@stt008.linux.site
(resending to the list)
> On Sat, January 14, 2012 4:55 pm, Camaleón wrote:
> > On Sat, 14 Jan 2012 15:26:30 -0500, tony baldwin wrote:
> >
> >> On Sat, January 14, 2012 12:41 pm, Camaleón wrote:
> >
> > (...)
> >
> >>> Tony, I would forget about the SSL part until you have configured your
> >>> Postfix to be in a workable state (sending/receiving e-mails with no
> >>> errors). Afterwards, you can start to setup the SSL certificate but not
> >>> before.
> >>>
> >>>
> >> I do have it working now, but the cert is still wrong.
> >
> > Okay, let's focus on that now.
> >
> >>>> When I configured postfix, I gave it tonybaldwin.org tonybaldwin.org
> >>>> is what shows in my main.cf I do know understand why anything says
> >>>> vulcan.linode.com
> >>>
> >>> This can come from SSL certificate file :-?
> >>
> >> yes, the cert says it is from vulcan.linode.com, while I am certain I
> >> have my hostname set as vulcan.tonybaldwin.org
> >
> > Your hostname (whatever is set to) has no effect on the SSL cert file.
> > You have to ensure that you created the certificate with the correct data.
> >
> > To see how it looks like you can:
> >
> > ***
> > openssl x509 -in /path/to/cert_file -noout -text
> > ***
>
> openssl x509 -in smtpd.cert -noout -text
> Certificate:
> Data:
> Version: 3 (0x2)
> Serial Number:
> encrypted stuff
> Signature Algorithm: sha1WithRSAEncryption
> Issuer: C=US, ST=Connecticut, L=New Haven, O=Tony Baldwin, OU=web
> mail, CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> Validity
> Not Before: Jan 11 01:06:15 2012 GMT
> Not After : Jan 10 01:06:15 2013 GMT
> Subject: C=US, ST=Connecticut, L=New Haven, O=Tony Baldwin, OU=web
> mail, CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> Subject Public Key Info:
> Public Key Algorithm: rsaEncryption
> RSA Public Key: (2048 bit)
> Modulus (2048 bit):
> encrypted stuff here...
>
> Exponent: 65537 (0x10001)
> X509v3 extensions:
> X509v3 Subject Key Identifier:
> encrypted stuff here
> X509v3 Authority Key Identifier:
> keyid:encrypted stuff here
> DirName:/C=US/ST=Connecticut/L=New Haven/O=Tony
> Baldwin/OU=web
> mail/CN=tonybaldwin.org/emailAddress=to...@tonybaldwin.org
> serial:encrypted stuff
>
> X509v3 Basic Constraints:
> CA:TRUE
> Signature Algorithm: sha1WithRSAEncryption
> encrypted stuff here...
>
>
>
> >
> > The "CN=" field has to be "vulcan.tonybaldwin.org", if not I would redo
> > again that specific step:
>
> The CN= field shows only "tonybaldwin.org", but mutt tells me the cert is
>
>
> >
> > The "CN=" field has to be "vulcan.tonybaldwin.org", if not I would redo
> > again that specific step:
>
> from vulcan.linode.com
Mmm, yes, the cert file seems to contain the right data.
> > http://library.linode.com/email/postfix/dovecot-mysql-debian-6-squeeze#sph_create-an-ssl-certificate-for-postfix
> >
>
> I did this probably a dozen times.
Okay :-)
> > Put special care when the openssl wizard asks for the "Common Name (eg,
> > YOUR name) []:", here you have to write "vulcan.tonybaldwin.org".
> >
>
Good X-)
> >> So, when I set up mutt at home, my laptop, etc., I see some error to
> >> the effect that the cert is from vulcan.linode.com, which disagrees
> >> with the host, vulcan.tonybaldwin.org.
> >> I just choose "(a) accept always", and it works, but it seems to me it
> >> would be better to have the cert correct.
> >
> > Sure, having the SSL cert file with the right data on it :-P
> >
> > However, unless you use a certificate coming from one of the authorized
> > companies you will still see a warning about its validity when connecting
> > from another computer.
>
> it's working for me as is, but I'd like to understand why the cert appears
> to have incorrect data, despite the parameters I passed to openssl.
I would run more tests, e.g.:
1/ Connect from another MUA (Thunderbird/Icedobe/Evolution/whatever)
and check if the error also appears from here.
2/ Run Mutt in debug mode (mutt -d 2), it will log to "~/.muttdebug0".
If you are sending the log file or upload to some place, remember to delete
any sensitive data which can contain.
Greetings,
--
Camaleón
--
To UNSUBSCRIBE, email to debian-us...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org
0 new messages