Your comments
After restarting the courier services and creating more mailboxes, the problem comes back.
the manually changed imapd-ssl got overwritten again... how can i fix that ?!
EDIT: with an audit i found out that the file gets changed when i create new mailboxes in ajenti.
rebooting doesnt overwrite it, but creating new mailboxes (maybe also editing existing ones) does.
PLEASE HELP!!!!
files that get overwritten:
imapd
imapd-ssl
all user** files and authdemon
files that get not overwritten:
all the pop files
the manually changed imapd-ssl got overwritten again... how can i fix that ?!
EDIT: with an audit i found out that the file gets changed when i create new mailboxes in ajenti.
rebooting doesnt overwrite it, but creating new mailboxes (maybe also editing existing ones) does.
PLEASE HELP!!!!
files that get overwritten:
imapd
imapd-ssl
all user** files and authdemon
files that get not overwritten:
all the pop files
Found more info in the log:
EDIT:
Aug 25 05:07:38 rs000101 imapd-ssl: couriertls: /etc/courier/mail.pem: error:0906D06C:PEM routines:PEM_read_bio:no start line
EDIT:
Problem fixed!
ajenti installation did not setup "/etc/courier/imapd-ssl" correctly.
or maybe the ssl setup inside ajenti cant write to the file...
whatever is the problem, it can be fixed by manually editing the file.
i had to change this line:
TLS_CERTFILE=/etc/courier/mail.pem
to
TLS_CERTFILE=/etc/ssl/certs/my.server.name.pem
and add those lines:
TLS_DHPARAMS=/etc/courier/dhparams.pem
WORKS NOW!
ajenti installation did not setup "/etc/courier/imapd-ssl" correctly.
or maybe the ssl setup inside ajenti cant write to the file...
whatever is the problem, it can be fixed by manually editing the file.
i had to change this line:
TLS_CERTFILE=/etc/courier/mail.pem
to
TLS_CERTFILE=/etc/ssl/certs/my.server.name.pem
TLS_DHPARAMS=/etc/courier/dhparams.pem
TLS_TRUSTCERTS=/etc/ssl/certs
WORKS NOW!
Update: i created a new mailbox and tried the imap/pop tests again.
now it finds pop3 ssl and asks for the acception of an unsigned ssl. if i approve, it works, and if i disapprove
it gives the same error as imap gives always (cant connect, check password). imap ssl shows no certificate, just gives error.
so maybe the problem is about the unsigned certificate?
now it finds pop3 ssl and asks for the acception of an unsigned ssl. if i approve, it works, and if i disapprove
it gives the same error as imap gives always (cant connect, check password). imap ssl shows no certificate, just gives error.
so maybe the problem is about the unsigned certificate?
I just figured out, when on imap without ssl, thunderbird gives me this warning:
Filesystem notification initialization error — contact your mail administrator (check for configuration errors with the FAM/Gamin library)
but i guess its because i have multiple mailboxes with the same account in thunderbird active :)
Ssl works fine on ftp and http by the way
Filesystem notification initialization error — contact your mail administrator (check for configuration errors with the FAM/Gamin library)
but i guess its because i have multiple mailboxes with the same account in thunderbird active :)
Ssl works fine on ftp and http by the way
This is how a connection refuse on thunderbird looks in the mail log (imap)
Aug 24 07:29:01 rs000101 imapd: LOGIN, user=blah@xxxxx.net, ip=[::ffff:xxxxx], port=[54169], protocol=IMAP
Aug 24 07:29:01 rs000101 imapd: LOGIN, user=blah@xxxxx.net, ip=[::ffff:xxxxx], port=[54169], protocol=IMAP
Aug 24 07:29:01 rs000101 imapd: LOGOUT, user=blah@xxxxx.net, ip=[::ffff:xxxxx], headers=0, body=0, rcvd=10, sent=234, time=0
and the failed ssl connection on pop3 looks similar, just with "Connected" and "Disconnected"...
Customer support service by UserEcho
at the bottom of the file u can see the data that will be written into the imapd-ssl, after a change.
just apply the changes from above to this file and the template will be saved, after a restart of ajenti and courier.