qpopper and ssl not working

Alexander Newald alexander at newald.de
Sun Jul 6 06:06:50 PDT 2003


Hello,

I try to install qpopper (4.0.5) with ssl support (openssl 0.9.7b) but I get
errors while getting mail from the qpopper server.

Here are the details:

I build qpopper with

./configure                                                     \
 --prefix=/usr                                   \
 --enable-bulletins=/var/spool/bulletins         \
 --enable-new-bulls=5                            \
 --enable-log-login                              \
 --enable-shy                                    \
 --enable-spool-dir=/var/spool/mail              \
 --enable-temp-drop-dir=/var/spool/mail.drop     \
 --enable-cache-dir=/var/spool/mail.cache        \
 --enable-timing                                 \
 --enable-standalone                             \
 --enable-nonauth-file=/etc/pop3.deny            \
 --enable-specialauth                            \
 --enable-debugging                              \
 --with-openssl

I run it with

/usr/sbin/popper -c -R -s -S -f /etc/qpopper.conf && \
/usr/sbin/popper 995 -c -R -s -S -f /etc/qpopper.conf



I build openssl with

./Configure linux-elf        \
    --openssldir=/etc/ssl    \
    --prefix=/usr shared



my /etc/qpopper.conf is

set tls-support = stls
set tls-server-cert-file = /etc/mail/certs/cert.pem
set debug = true



and I created the cert.pm with

openssl genrsa -des3 -out /etc/ssl/private/ca.key 1024
openssl req -new -x509 -days 365 -key /etc/ssl/private/ca.key -out
/etc/ssl/private/ca.crt
mkdir -p -m665 /etc/mail/certs
chown root:mail /etc/mail/certs
chmod 660 /etc/mail/certs
openssl req -new -nodes -out /etc/mail/certs/req.pem -keyout
/etc/mail/certs/cert.pem
openssl x509 -req -CA /etc/ssl/private/ca.crt -CAkey
/etc/ssl/private/ca.key -days 365 -in /etc/mail/certs/req.pem -out
/tmp/cert.pem -CAcreateserial
chmod 600 /etc/mail/certs/cert.pem
chown root:0 /etc/mail/certs/cert.pem
cat /tmp/cert.pem >> /etc/mail/certs/cert.pem


The logfile tells me

Jul  5 16:39:49 linux popper[7180]: Set debug to true [pop_config.c:1206]
Jul  5 16:39:49 linux popper[7180]: Finished processing config file
'/etc/qpopper.conf'; rslt=1 [pop_config.c:1518]
Jul  5 16:39:49 linux popper[7180]: (v4.0.5) Servicing request from
"192.168.1.111" at 192.168.1.111 [pop_init.c:1186]
Jul  5 16:39:49 linux popper[7180]: before TLS; tls_support==2
[popper.c:181]
Jul  5 16:39:49 linux popper[7180]: ...Initializing OpenSSL library (version
OpenSSL 0.9.7b 10 Apr 2003) [pop_tls_openssl.c:230]
Jul  5 16:39:49 linux popper[7180]: ...have /dev/urandom; skipping PRNG
seeding [pop_tls_openssl.c:288]
Jul  5 16:39:49 linux popper[7180]: ...setting method to
SSLv23_server_method [pop_tls_openssl.c:312]
Jul  5 16:39:49 linux popper[7180]: ...allocating OpenSSL context
[pop_tls_openssl.c:342]
Jul  5 16:39:49 linux popper[7180]: ...setting certificate file
/etc/mail/certs/cert.pem [pop_tls_openssl.c:363]
Jul  5 16:39:49 linux popper[7180]: ...private key file not set; assuming
private key is in cert (/etc/mail/certs/cert.pem) [pop_tls_openssl.c:380]
Jul  5 16:39:49 linux popper[7180]: ...setting private key file
/etc/mail/certs/cert.pem [pop_tls_openssl.c:384]
Jul  5 16:39:49 linux popper[7180]: ...verifying private key against
certificate [pop_tls_openssl.c:397]
Jul  5 16:39:49 linux popper[7180]: ...(tls_cipher_list not specified)
[pop_tls_openssl.c:424]
Jul  5 16:39:49 linux popper[7180]: ...allocating OpenSSL connection
[pop_tls_openssl.c:435]
Jul  5 16:39:49 linux popper[7180]: ...setting input (0) and output (0) file
descriptors [pop_tls_openssl.c:446]
Jul  5 16:39:49 linux popper[7180]: ...successfully completed OpenSSL
initialization [pop_tls_openssl.c:465]
Jul  5 16:39:49 linux popper[7180]: TLS Init [popper.c:202]
Jul  5 16:39:49 linux popper[7180]: (v4.0.5) Intro [popper.c:247]
Jul  5 16:39:49 linux popper[7180]: +OK ready   [popper.c:255]
Jul  5 16:39:49 linux popper[7180]: Qpopper ready for input from (null) at
192.168.1.111 [192.168.1.111] [popper.c:294]
Jul  5 16:39:49 linux popper[7180]: Received (5): "\200L^A^C^A"
[pop_get_command.c:105]
Jul  5 16:39:49 linux popper[7180]: (null) at 192.168.1.111
(192.168.1.111): -ERR Unknown command: "\200l^A^C^A".
[pop_get_command.c:152]
Jul  5 16:39:49 linux popper[7180]: Qpopper ready for input from (null) at
192.168.1.111 [192.168.1.111] [popper.c:294]
Jul  5 16:39:49 linux popper[7180]: (null) at 192.168.1.111
(192.168.1.111): -ERR POP EOF or I/O Error [popper.c:820]
Jul  5 16:39:49 linux popper[7180]: I/O error flushing output to client  at
192.168.1.111 [192.168.1.111]: Operation not permitted (1) [pop_send.c:689]
Jul  5 16:39:49 linux popper[7180]: +OK Pop server at linux signing off.
[popper.c:360]
Jul  5 16:39:49 linux popper[7180]: I/O error flushing output to client  at
192.168.1.111 [192.168.1.111]: Operation not permitted (1) [pop_send.c:689]
Jul  5 16:39:49 linux popper[7180]: pTLS->m_pPOP->tls_started == false
[pop_tls_openssl.c:823]
Jul  5 16:39:49 linux popper[7180]: freeing m_OpenSSLconn
[pop_tls_openssl.c:827]
Jul  5 16:39:49 linux popper[7180]: freeing m_OpenSSLctx
[pop_tls_openssl.c:833]
Jul  5 16:39:49 linux popper[7180]: openssl_shutdown returning 0
[pop_tls_openssl.c:838]
Jul  5 16:39:49 linux popper[7180]: (v4.0.5) Ending request from "" at
(192.168.1.111) 192.168.1.111 [popper.c:378]
Jul  5 16:39:49 linux popper[7180]: (v4.0.5) Timing for @192.168.1.111
(error) auth=0 init=0 clean=0 [popper.c:384]
Jul  5 16:39:49 linux popper[7181]: Set debug to true [pop_config.c:1206]
Jul  5 16:39:49 linux popper[7181]: Finished processing config file
'/etc/qpopper.conf'; rslt=1 [pop_config.c:1518]
Jul  5 16:39:49 linux popper[7181]: (v4.0.5) Servicing request from
"192.168.1.111" at 192.168.1.111 [pop_init.c:1186]
Jul  5 16:39:49 linux popper[7181]: before TLS; tls_support==2
[popper.c:181]
Jul  5 16:39:49 linux popper[7181]: ...Initializing OpenSSL library (version
OpenSSL 0.9.7b 10 Apr 2003) [pop_tls_openssl.c:230]
Jul  5 16:39:49 linux popper[7181]: ...have /dev/urandom; skipping PRNG
seeding [pop_tls_openssl.c:288]
Jul  5 16:39:49 linux popper[7181]: ...setting method to
SSLv23_server_method [pop_tls_openssl.c:312]
Jul  5 16:39:49 linux popper[7181]: ...allocating OpenSSL context
[pop_tls_openssl.c:342]
Jul  5 16:39:49 linux popper[7181]: ...setting certificate file
/etc/mail/certs/cert.pem [pop_tls_openssl.c:363]
Jul  5 16:39:49 linux popper[7181]: ...private key file not set; assuming
private key is in cert (/etc/mail/certs/cert.pem) [pop_tls_openssl.c:380]
Jul  5 16:39:49 linux popper[7181]: ...setting private key file
/etc/mail/certs/cert.pem [pop_tls_openssl.c:384]
Jul  5 16:39:49 linux popper[7181]: ...verifying private key against
certificate [pop_tls_openssl.c:397]
Jul  5 16:39:49 linux popper[7181]: ...(tls_cipher_list not specified)
[pop_tls_openssl.c:424]
Jul  5 16:39:49 linux popper[7181]: ...allocating OpenSSL connection
[pop_tls_openssl.c:435]
Jul  5 16:39:49 linux popper[7181]: ...setting input (0) and output (0) file
descriptors [pop_tls_openssl.c:446]
Jul  5 16:39:49 linux popper[7181]: ...successfully completed OpenSSL
initialization [pop_tls_openssl.c:465]
Jul  5 16:39:49 linux popper[7181]: TLS Init [popper.c:202]
Jul  5 16:39:49 linux popper[7181]: (v4.0.5) Intro [popper.c:247]
Jul  5 16:39:49 linux popper[7181]: +OK ready   [popper.c:255]
Jul  5 16:39:49 linux popper[7181]: Qpopper ready for input from (null) at
192.168.1.111 [192.168.1.111] [popper.c:294]
Jul  5 16:39:49 linux popper[7181]: (null) at 192.168.1.111
(192.168.1.111): -ERR POP EOF or I/O Error [popper.c:820]
Jul  5 16:39:49 linux popper[7181]: I/O error flushing output to client  at
192.168.1.111 [192.168.1.111]: Operation not permitted (1) [pop_send.c:689]
Jul  5 16:39:49 linux popper[7181]: +OK Pop server at linux signing off.
[popper.c:360]
Jul  5 16:39:49 linux popper[7181]: I/O error flushing output to client  at
192.168.1.111 [192.168.1.111]: Operation not permitted (1) [pop_send.c:689]
Jul  5 16:39:49 linux popper[7181]: pTLS->m_pPOP->tls_started == false
[pop_tls_openssl.c:823]
Jul  5 16:39:49 linux popper[7181]: freeing m_OpenSSLconn
[pop_tls_openssl.c:827]
Jul  5 16:39:49 linux popper[7181]: freeing m_OpenSSLctx
[pop_tls_openssl.c:833]
Jul  5 16:39:49 linux popper[7181]: openssl_shutdown returning 0
[pop_tls_openssl.c:838]
Jul  5 16:39:49 linux popper[7181]: (v4.0.5) Ending request from "" at
(192.168.1.111) 192.168.1.111 [popper.c:378]
Jul  5 16:39:49 linux popper[7181]: (v4.0.5) Timing for @192.168.1.111
(error) auth=0 init=0 clean=0 [popper.c:384]





I really wonder about these lines

Jul  5 16:39:49 linux popper[7180]: (null) at 192.168.1.111
(192.168.1.111): -ERR Unknown command: "\200l^A^C^A".

and

Jul  5 16:39:49 linux popper[7181]: (null) at 192.168.1.111
(192.168.1.111): -ERR POP EOF or I/O Error [popper.c:820]
Jul  5 16:39:49 linux popper[7181]: I/O error flushing output to client  at
192.168.1.111 [192.168.1.111]: Operation not permitted (1) [pop_send.c:689]


which is the same with outlook or eudora as mail client



Any hints?

Thanks,

Alexander Newald




-- 
Unsubscribe: send email to listar at linuxfromscratch.org
and put 'unsubscribe blfs-support' in the subject header of the message



More information about the blfs-support mailing list