From owner-freebsd-ports@FreeBSD.ORG Sat Oct 6 00:07:22 2007 Return-Path: Delivered-To: ports@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E91D016A418; Sat, 6 Oct 2007 00:07:22 +0000 (UTC) (envelope-from ed@bashware.net) Received: from srv1.bashware.net (srv1.bashware.net [207.7.148.2]) by mx1.freebsd.org (Postfix) with ESMTP id CF58613C48D; Sat, 6 Oct 2007 00:07:22 +0000 (UTC) (envelope-from ed@bashware.net) Received: from localhost (localhost [127.0.0.1]) by srv1.bashware.net (Postfix) with ESMTP id AA00446AE1F; Fri, 5 Oct 2007 17:07:22 -0700 (PDT) X-Virus-Scanned: by srv1.bashware.net Received: from srv1.bashware.net ([127.0.0.1]) by localhost (chard.bashware.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q-Chd8LExeDx; Fri, 5 Oct 2007 17:07:16 -0700 (PDT) Received: from [192.168.0.2] (kafka.bashware.net [74.0.34.58]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by srv1.bashware.net (Postfix) with ESMTP id B852346AE1E; Fri, 5 Oct 2007 17:07:16 -0700 (PDT) Message-ID: <4706D1B4.8090803@bashware.net> Date: Fri, 05 Oct 2007 17:07:16 -0700 From: Edward Buck User-Agent: Thunderbird 1.5.0.12 (X11/20070719) MIME-Version: 1.0 To: oliver@FreeBSD.org References: <47066CFE.20301@bashware.net> In-Reply-To: <47066CFE.20301@bashware.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: ports@FreeBSD.org Subject: Re: FreeBSD Port: courier-imap-4.2.0 ssl failure on port 993 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Oct 2007 00:07:23 -0000 Edward Buck wrote: > This is regarding the recent update courier-imap-4.2.0. > > Not sure if something has changed in functionality or perhaps there was > an incompatible configuration change but the update broke my imaps > setup. I admit that my SSL libraries might be the problem since there > was recently a security update for SSL. > > I updated SSL using freebsd-update (binary updates) which before today > has been pretty reliable. Afterwards, my old courier-imap still worked > fine (perhaps because it was still using the old libraries?). Then last > night, I updated courier and imaps stopped working (I don't run anything > on the standard imap port). > > The error is: > > Oct 5 09:40:00 kafka imapd-ssl: couriertls: connect: error:1408F10B:SSL > routines:SSL3_GET_RECORD:wrong version number Here's an update on this issue. I forgot to mention earlier than the system is FreeBSD 6.2 p8. The problem seems to be specific to imapd-ssl running on port 993. I didn't spend a lot of time troubleshooting different clients. Previous to the update, I used Thunderbird with SSL/port 993 without problems. Strangely, Korn (KDE mail notifier) seemed to work okay on port 993. It could be a client thing but I suspect they just default to different SSL versions. TLS works just fine on port 143, which is the configuration I've been meaning to switch to for some time. The update forced the issue and thus, this problem is not really one anymore. But for those who are still using imaps on port 993, the update (either the courier-imap update or the SSL update) may cause some problems. Thanks. Ed > > Just wanted to see if this is something others are noticing with the > upgrade. My setup is very vanilla (i386, default make options, generic > kernel, standard userland) so I don't think it's system-specific. > > I'll be doing some more testing today, including running a non-SSL setup > to check if courier-imap is okay in other respects. > > Thanks! > Ed >