No SMTP TLS or SSL after upgrade?

Started by David Pierron, February 19, 2009, 03:09:20 PM

Previous topic - Next topic

David Pierron

I posted this to mailing list, but I never got it back so maybe my problems are worse?  Anywho ...

Followed MT Upgrade instructions via Wiki @ TNPI.biz (selectively
upgrading portaudit reported ports wasn't working for me)

# toaster_setup.pl -s authtest
test_auth: testing domain is: mail.messages.net.
port_install: p5-Mail-POP3Client....................................ok
(p5-Mail-POP3Client-2.17)
port_install: p5-Mail-IMAPClient....................................ok
(p5-Mail-IMAPClient-3.14)
port_install: p5-Net-SMTP_auth......................................ok
(p5-Net-SMTP_auth-0.08)
port_install: p5-IO-Socket-SSL......................................ok
(p5-IO-Socket-SSL-1.22)
imap_test_auth: checking Mail::IMAPClient ........................ ok
imap_test_auth: authenticate IMAP user with plain passwords.........ok
testing an authentication that should fail..........................ok
imap_test_auth: checking IO::Socket::SSL ......................... ok
DHE-RSA-AES256-SHA...server returned: 0
imap_test_auth: auth IMAP SSL with plain password...................FAILED
pop3_test_auth: checking Mail::POP3Client ........................ ok
pop3_auth: POP3 server with APOP passwords..........................FAILED
pop3_auth: POP3 server with CRAM-MD5 passwords......................ok
pop3_auth: POP3 SSL server with CRAM-MD5 passwords..................ok
pop3_auth: POP3 SSL server with APOP passwords......................FAILED
pop3_auth: POP3 server with plain text passwords....................ok
pop3_auth: POP3 SSL server with plain text passwords................ok
smtp_test_auth: checking Net::SMTP_auth .......................... ok
getting a list of SMTP AUTH methods...done.
smtp_test_auth: sending with LOGIN authentication...................ok
smtp_test_auth: sending with PLAIN authentication...................ok
smtp_test_auth: sending with CRAM-MD5 authentication................ok

If I change outgoing server to use Port 25 or 587 No secure connection,
mail is able to be sent but sending Mail via 587 TLS or SSL:
I see noting in log and my MUA displays:

Thunderbird can't connect securely to [my mail toaster] because the site
uses a security protocol which isn't enabled.
=CLICK OK=
*Send Message Error*
Sending of message failed.
The message could not be sent because connecting to SMTP server [my mail
toaster] failed.  The server may be unavailable or is refusing SMTP
connections. Please verify that your SMTP server setting is correct and
try again, or else contact your network administrator.

$ telnet mail.messages.net 587
Connected to mail.messages.net.
Escape character is '^]'.
220 mail.messages.net ESMTP
ehlo
250-mail.messages.net
250-STARTTLS
250-PIPELINING
250-8BITMIME
250-SIZE 20000000
250 AUTH LOGIN PLAIN CRAM-MD5
David Pierron
http://www.icuhost.net" target="_blank">http://www.icuhost.net

David Pierron

I still never received my email, but other email is flowing.  Others are giving me reports of their incoming bouncing, and I see none of this reflected in the logs ...  So, since I have no idea what's going on, I am starting over from portupgrade.

All ports are up to date (save vpopmail, qmail, etc.  MT stuff)

Now I am portupgrading -f all the p5- stuff (perl-after-upgrade was run, but I don't trust it at this point cause the MT isn't working)

I would imagine it's in Qmail as that's where I understand SMTP-AUTH to be (in netqmail), but I won't know until I get back to that step again.

"qmail cdb" reports the ClamAV daily.cvd file as missing, I don' think that file any longer exists, so I don't know what to do about that.

Anyway, I'll keep poking it until it gets up and fights me back.
David Pierron
http://www.icuhost.net" target="_blank">http://www.icuhost.net

David Pierron

Yeah, that didn't work ... after recompiling everything I can't connect with TLS or SSL and the logs don't show anything when I attempt it ...   Where do I look?
David Pierron
http://www.icuhost.net" target="_blank">http://www.icuhost.net

David Pierron

SOLVED:

toaster_setup.pl -s toaster

Downloads a tar file with no version in filename, unarchives, does some things and then deletes itself (work directory? No.).

I downloaded Mail-Toaster-5.11.tar.gz from store and placed that in /usr/local/src unarch'd and ran from ./bin and things started working.

I rebuilt vpopmail and qmail ...

I don't know how the original .pl files ended up in /usr/local/sbin ... I hope I remember this next upgrade.
David Pierron
http://www.icuhost.net" target="_blank">http://www.icuhost.net