MRatWork Forum by Mustafa Ramadhan
Sawo Project - Kloxo-MR Discussions => Kloxo-MR Development => Topic started by: fossxplorer on 2015-04-15, 12:33:48
-
Is StartTLS supported by Kloxo's email server?
I'm trying to setup Thunderbird to use one of my email accounts on Kloxo. First of all, it doesn't support auto discovery of email settings. Secondly, i can use 143 with StartTLS for IMAP.
But for SMTP, i can use 587 with StartTLS!
Why?
Update:
CheckTLS tells me:
Your email was sent, however it was NOT SENT SECURELY using TLS.
-
Not sure about Thunderbird term (StartTLS).
-
http://en.wikipedia.org/wiki/STARTTLS
Locally on the server it works:
[root@mail ~]# telnet localhost 25
Trying ::1...
telnet: connect to address ::1: Connection refused
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 mydomain.com - Welcome to Qmail ESMTP
ehlo testing
250-mydomain.com - Welcome to Qmail
250-STARTTLS
250-PIPELINING
250-8BITMIME
250-SIZE 20971520
250 AUTH LOGIN PLAIN
quit
Connection closed by foreign host.
[root@mail ~]#
And you can see that 250-STARTTLS indicates support for STARTTLS.
-
By design, port 25 not use starttls.
-
Ok, but IMAP STARTTLS uses port 143. As i said STARTTLS works fine with SMTP on port 587.
My question is why STARTTLS doesn't work with IMAP on port 143?
-
Investigate content of /var/qmail/supervise/<pop3/pop3-ssl/imap/imap-ssl>/run.
-
Trying to use IMAP with 143 and STARTTLS Thunderbird gives the error:
The current operation on 'Inbox' did not succeed. The mail server for account test@examplc.com, responded: Error in IMAP command received by server.
IMAP works fine with 993 and SSL/TLS.
[root@mail ~]# cat /var/qmail/supervise/imap4-ssl/run
#!/bin/sh
HOSTNAME=`hostname --fqdn`
rm -rf ./env/*;
cat /etc/courier/imapd-ssl | /usr/bin/envconv
if [ -f /var/qmail/control/softlimit ] ; then
### MR -- softlimit file must content with '/usr/bin/softlimit -m SOFTLIMITVAR'
### where SOFTLIMITVAR is 72000000 for 64bit and 18000000
### Note: incresing SOFTLIMITVAR if not enough (example: because 'login fail')
SOFTLIMIT=$(cat /var/qmail/control/softlimit)
else
SOFTLIMIT=""
fi
IP=0
PORT=993
exec /usr/bin/envdir ./env/ \
$SOFTLIMIT \
/usr/bin/tcpserver -v -R -H -l $HOSTNAME $IP $PORT \
/usr/bin/couriertls -server -tcpd \
/usr/sbin/imaplogin \
/usr/bin/imapd Maildir 2>&1
[root@mail ~]#
My little research so far leads me think that Kloxo-MR doesn't support STARTTLS for IMAP on port 143, but it does for SMTP on 587!
CAN ANYONE PLS TRY TO ACCESS IMAP ON PORT 143 USING STARTTLS TO CONFIRM?
Also, another subject, i think all domains should have an entry with "smtp.domain.com" with an A record to the main shared IP.
Trying to configure Gmail with one mail account from Kloxo by default was trying to look for smtp.domain.com on port 587 for SMTP :)
Investigate content of /var/qmail/supervise/<pop3/pop3-ssl/imap/imap-ssl>/run.
-
And then compare to smtp/smtp-ssl/submission run file.
-
My little research so far leads me think that Kloxo-MR doesn't support STARTTLS for IMAP on port 143, but it does for SMTP on 587!
CAN ANYONE PLS TRY TO ACCESS IMAP ON PORT 143 USING STARTTLS TO CONFIRM?
I can only with SSL/TLS (993) and SSL/TLS (465). STARTTLS not work for me.
http://forum.mratwork.com/kloxo-mr-technical-helps/vchkpw-submission-vpopmail-user-not-found/
-
Try investigate files inside /etc/courier/, /var/qmail/supervise/<imap4|imap4-ssl|pop3|pop3-ssl>/run. Maybe something missing or not match.
-
@Mustafa, yes as indicated above, STARTTLS only works for SMTP and not for IMAP.
Can you please fix it?
-
Investigate /etc/courier/imapd-ssl file.