From owner-freebsd-questions@FreeBSD.ORG Tue Mar 25 16:41:41 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 42FCA362 for ; Tue, 25 Mar 2014 16:41:41 +0000 (UTC) Received: from mailout07.t-online.de (mailout07.t-online.de [194.25.134.83]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 0530A376 for ; Tue, 25 Mar 2014 16:41:40 +0000 (UTC) Received: from fwd25.aul.t-online.de (fwd25.aul.t-online.de ) by mailout07.t-online.de with smtp id 1WSUPt-0001tr-51; Tue, 25 Mar 2014 17:41:33 +0100 Received: from t-online.de (EYxJhmZYZh2EIRt-T4khhMVgNbHx1qx8HULxp6Dy5CxUH2j2YsJmWIHwWXmGASdQEg@[84.152.244.138]) by fwd25.t-online.de with esmtp id 1WSUPr-2DLvc00; Tue, 25 Mar 2014 17:41:31 +0100 Received: by t-online.de (nbSMTP-1.00) for uid 1001 johannes-maria@t-online.de; Tue, 25 Mar 2014 18:25:04 +0100 (CET) Date: Tue, 25 Mar 2014 18:25:04 +0100 From: Johannes-Maria Kaltenbach To: freebsd-questions@freebsd.org Subject: (still) problems with email/ssl and t-online.de/telekom.de Message-ID: <20140325172504.GD1899@jmk.org> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.4.2.3i X-ID: EYxJhmZYZh2EIRt-T4khhMVgNbHx1qx8HULxp6Dy5CxUH2j2YsJmWIHwWXmGASdQEg X-TOI-MSGID: 8a7acbe1-f73d-41b0-b4d1-2ef2f19333ff X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 Mar 2014 16:41:41 -0000 Hello, last November I asked a question with an almost identical subject (I include a copy at the end of this mail) an I received immediately a good answer but it seems I was only able to solve half of the problem wich is a secure connection for my emails. I thought I had solved it but it was probably only for receiving mails and not yet for sending them. There was a transition time when they accepted both secure and insecure connections but this ends this week; from 31 March on only secure connections will be accepted (as stated in the reminder which I now received from telekom; also copied at the end of this mail, but it is in german). It doesn't say if the insecure connection was for sending or receiving emails but I think that the receiving (with getmail) is ok, but that I made an error in configuring sendmail. (for my mails I use mutt and vi direct, getmail and sendmail in the background) I didn't get any direct help from telekom but on one of their internet pages one can find information for some mail programs (none of which I use, all some gui programs where you should change a configuration menu). On the part for thunderbird one finds that for receiving emails one should change the server name from popmail.t-online.de to securepop.t-online.de [this was the answer I got to my mail from Novemer; I had changed only the type from SimplePOP3Retriever to SimplePOP3SSLRetriever in getmailrc which wasn't enough]. For sending emails one should change from smtpmail.t-online.de to securesmtp.t-online.de (port 465). So I changed this in the mc-file in /etc/mail, make install in /etc/mail and restarted sendmail. I've got the warning Warning: Option: AuthMechanisms requires SASL support (-DSASL) So I deinstalled sendmail and installed it from /usr/ports/mail/sendmail-sasl/. Now it starts without warnings. I thought that now I would have a secure connection to t-online.de until the reminder mail came stating I'd still use an insecure connection. I looked at /var/log/maillog and for each outgoing mail I find Creating connection to host (smtpmail.t-online.de:25) Authentication succeded [johannes-maria] Recipient accepted ... Mail sent for johannes-maria@t-online.de. Closing connection So it's still smtpmail.t-online.de. But this name is not contained in any file in /etc/mail [or any file under /etc]. I tried it with securesmtp.t-online.de and securesmtp.t-online.de:465 in the configuration files (I don't know where else to put the port number 465) but in both cases I get the smtpmail.t-online.de in /var/log/maillog. Can you help? thanks in advance Johannes-Maria ----------------------------------------------------------------------- > From: Johannes-Maria Kaltenbach > To: freebsd-questions@freebsd.org > Subject: problems with email/ssl and t-online.de/telekom.de > Message-ID: <20131120134653.GA4704@jmk.org> > > Hello, > > on 5 Nov I received an email from my provider telekom.de > informing me that I use an insecure connection for my emails > and that from start of 2014 on ssl is required. > For my emails I use sendmail and getmail (and mutt/vi) so > I think ssl should be supported. > > I changed the type from SimplePOP3Retriever to SimplePOP3SSLRetriever > in my $HOME/.getmail/getmailrc: > > | [retriever] > | type = SimplePOP3SSLRetriever > | server = popmail.t-online.de > | username = ... > | password = ... > > > but with this I get only > > | getmailrc: socket error ([Errno 61] Connection refused) > > I described this in a detailed email to telekom.de (twice) > but didn't get any answer. > > Can anyone please tell me what I'm doing wrong or explain > to me what I should do instead. > > > thanks in advance > Johannes-Maria ----------------------------------------------------------------------- > From: "Deutsche Telekom AG" > Subject: Erinnerung: Bitte stellen Sie jetzt Ihr E-Mail-Programm auf > Verschlüsselung um! > > Stellen Sie jetzt Ihr E-Mail-Programm auf Verschlüsselung um! > Ab 31. März 2014 ist kein unverschlüsselter E-Mail-Zugriff mehr möglich. > > Lieber Telekom Kunde, > > Sie erhalten diese Nachricht, da Sie vor kurzem unverschlüsselt auf Ihre > E-Mails @t-online.de zugegriffen haben. Um Ihre E-Mails vor unbefugtem > Zugriff zu schützen, ist der E-Mail-Empfang und Versand ab dem 31. März > 2014 nur noch verschlüsselt möglich. > ...