james-server-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Norman Maurer <nor...@apache.org>
Subject Re: James 3 and SSL/TLS
Date Mon, 24 Jan 2011 12:14:51 GMT
Well port 25 is the "standard port" for smtp, so this is by design. As
other server are not forced to support TLS at all. If you want JAMES
to send all email to a smtp-relay which supports TLS you can configure
the RemoteDelivery mailet to do this.

Bye,
Norman


2011/1/24 Kevin Kovach <kovach@gmail.com>:
> Yes.  It appears to be working better.  Thank you.
>
> Next question.  James (SMTP server) appears to be listening and accepting my
> email on 465, but when it goes to deliver it, it's trying to use port 25.  I
> was expecting it to deliver outgoing mail on 465 as well.  Is that not the
> case?  If not, is there a way to accomplish that?  Thanks again.
>
> - Kevin
>
>
> On Sun, Jan 23, 2011 at 2:31 PM, Norman Maurer <norman@apache.org> wrote:
>
>> If I'm not wrong the bug is in this release. Let me know if a newer jdk fix
>> it..
>>
>> Bye,
>> Norman
>>
>>
>> 2011/1/23 Kevin Kovach <kovach@gmail.com>:
>> > Actually, I've tried TLS and STATTLS and they both seem to behave the
>> same
>> > way.  You might be on to something though with my Java version.  I am
>> > using Java(TM) SE Runtime Environment (build 1.6.0_11-b03).  I'll get a
>> > newer release and see if that helps.  Thanks.
>> >
>> > - Kevin
>> >
>> > On Sun, Jan 23, 2011 at 5:40 AM, Norman Maurer <norman@apache.org>
>> wrote:
>> >
>> >> Hi Kevin,
>> >>
>> >> do you use TLS or STARTTLS ? Could give me the version of java you are
>> >> using ? I remember there was some bug in 1.6 in the past which raised
>> >> this exception.
>> >>
>> >> Bye,
>> >> Norman
>> >>
>> >>
>> >> 2011/1/23 Kevin Kovach <kovach@gmail.com>:
>> >> > Interesting.  Well, the latest snapshot is better.  I was able to
>> >> retrieve
>> >> > some mail with POP and TLS enabled.  Thanks!
>> >> >
>> >> > Unfortunately, now I am seeing the following message when trying to
>> >> either
>> >> > send mail with TLS enabled on my smtp server, or retrieve mail with
>> TLS
>> >> > enabled on the imap server.  I've triple checked the configuration,
>> and
>> >> they
>> >> > all look the same.  There's not a whole lot to it.  Is there more
than
>> >> just
>> >> > that small <tls></tls> block needed to enable tls for smtp
and imap?
>> >> >
>> >> > INFO  23:20:48,957 | james.smtpserver | ID=19911387 Connection
>> >> established
>> >> > from my.host.com (192.168.1.1)
>> >> > DEBUG 23:20:48,976 | james.smtpserver | ID=19911387
>> >> > org.apache.james.smtpserver.JamesWelcomeMessageHandler
>> disconnect=false
>> >> > DEBUG 23:20:49,024 | james.smtpserver | Unable to process request
>> >> > javax.net.ssl.SSLException: Unexpected end of handshake data
>> >> > at
>> >> com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:954)
>> >> >  at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:465)
>> >> > at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:701)
>> >> >  at
>> >> >
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:669)
>> >> > at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:607)
>> >> >  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:868)
>> >> > at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:605)
>> >> >  at
>> >> >
>> >>
>> org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:282)
>> >> > at
>> >> >
>> >>
>> org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:216)
>> >> >  at
>> >> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:274)
>> >> > at
>> >> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:261)
>> >> >  at
>> org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:350)
>> >> > at
>> >> >
>> >>
>> org.jboss.netty.channel.socket.nio.NioWorker.processSelectedKeys(NioWorker.java:281)
>> >> >  at
>> org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:201)
>> >> > at
>> >> >
>> >>
>> org.jboss.netty.util.internal.IoWorkerRunnable.run(IoWorkerRunnable.java:46)
>> >> >  at
>> >> >
>> >>
>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>> >> > at
>> >> >
>> >>
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>> >> >  at java.lang.Thread.run(Thread.java:619)
>> >> > Caused by: javax.net.ssl.SSLException: Unexpected end of handshake
>> data
>> >> > at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.HandshakeInStream.read(HandshakeInStream.java:81)
>> >> >  at java.io.InputStream.read(InputStream.java:85)
>> >> > at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.UnknownExtension.<init>(HelloExtensions.java:204)
>> >> >  at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.HelloExtensions.<init>(HelloExtensions.java:69)
>> >> > at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.HandshakeMessage$ClientHello.<init>(HandshakeMessage.java:252)
>> >> >  at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:135)
>> >> > at
>> >> com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:516)
>> >> >  at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:458)
>> >> > at java.security.AccessController.doPrivileged(Native Method)
>> >> >  at
>> >> >
>> >>
>> com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:875)
>> >> > at org.jboss.netty.handler.ssl.SslHandler$2.run(SslHandler.java:999)
>> >> >  at
>> >> >
>> >>
>> org.jboss.netty.handler.ssl.ImmediateExecutor.execute(ImmediateExecutor.java:37)
>> >> > at
>> >> >
>> >>
>> org.jboss.netty.handler.ssl.SslHandler.runDelegatedTasks(SslHandler.java:996)
>> >> >  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:886)
>> >> > ... 12 more
>> >> >
>> >> >
>> >> >
>> >> > On Sat, Jan 22, 2011 at 2:41 PM, Norman Maurer <norman@apache.org>
>> >> wrote:
>> >> >
>> >> >> Hi,
>> >> >>
>> >> >> remotemanager was removed lately. All the management operations
are
>> >> >> now exposed via JMX. Just use jconsole (for example) to connect
to
>> >> >> JAMES. The mailserver.xml was removed and merged with other
>> >> >> configuration files (in detail in usersrepository.xml,
>> >> >> mailetcontainer.xml and domainlist.xml).
>> >> >>
>> >> >> Bye,
>> >> >> Norman
>> >> >>
>> >> >> 2011/1/22 Kevin Kovach <kovach@gmail.com>:
>> >> >> > This seems to be missing some things.  Like, I don't see
the
>> >> >> > remotemanager.xml config file or the mailserver.xml config
file?
>>  Have
>> >> >> these
>> >> >> > been deprecated or rolled into another file?  I don't see
their
>> config
>> >> in
>> >> >> > any of the other files, but I suppose I could have missed
it?
>> >> >> >
>> >> >> > - Kevin
>> >> >> >
>> >> >> > On Sat, Jan 22, 2011 at 3:58 AM, Norman Maurer <norman@apache.org>
>> >> >> wrote:
>> >> >> >
>> >> >> >> What version are you using ? There was a bug in M2 related
to
>> >> >> >> RetrCmdHandler. Maybe you should try this one:
>> >> >> >>
>> >> >> >>
>> >> >> >>
>> >> >>
>> >>
>> https://repository.apache.org/content/groups/snapshots/org/apache/james/james-server-container-spring/3.0-M3-SNAPSHOT/james-server-container-spring-3.0-M3-20110121.141825-287-bin.tar.gz
>> >> >> >>
>> >> >> >> Bye,
>> >> >> >> Norman
>> >> >> >>
>> >> >> >> 2011/1/22 Kevin Kovach <kovach@gmail.com>:
>> >> >> >> > Thanks for the reply.  It appears to be configured
now.  The
>> server
>> >> >> >> starts
>> >> >> >> > and stays up.
>> >> >> >> >
>> >> >> >> > Unfortunately, everything seems very slow and the
connection
>> keeps
>> >> >> timing
>> >> >> >> > out when trying to pop mail with TLS enabled.  I
don't know if
>> this
>> >> >> could
>> >> >> >> be
>> >> >> >> > because I have something else configured incorrectly?
>> >> >> >> >
>> >> >> >> > I turned on DEBUG and am seeing the following in
my
>> >> james-server.log
>> >> >> and
>> >> >> >> > pop3server.log ...
>> >> >> >> >
>> >> >> >> > DEBUG 02:33:11,919 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > AUTH
>> >> >> >> > DEBUG 02:33:11,921 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > CAPA
>> >> >> >> > DEBUG 02:33:11,937 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > USER
>> >> >> >> > DEBUG 02:33:11,939 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > PASS
>> >> >> >> > DEBUG 02:33:11,961 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > STAT
>> >> >> >> > DEBUG 02:33:11,969 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > LIST
>> >> >> >> > DEBUG 02:33:11,984 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > UIDL
>> >> >> >> > DEBUG 02:33:11,987 | james.pop3server | Lookup command
handler
>> for
>> >> >> >> command:
>> >> >> >> > RETR
>> >> >> >> >
>> >> >> >> > then a minute a so later it times out.  The resources
don't seem
>> to
>> >> be
>> >> >> >> > taxed.  Not sure what is going on.  Any further
hints would be
>> >> >> >> appreciated.
>> >> >> >> >  Thanks.
>> >> >> >> >
>> >> >> >> > - Kevin
>> >> >> >> >
>> >> >> >> >
>> >> >> >> > On Sat, Jan 22, 2011 at 1:04 AM, Eric Charles <eric@apache.org>
>> >> >> wrote:
>> >> >> >> >
>> >> >> >> >> Hi,
>> >> >> >> >>
>> >> >> >> >> The page is outdated for james 3.0.
>> >> >> >> >> You will find example for the tls block on
>> >> >> >> >>
>> >> >> >>
>> >> >>
>> >>
>> https://svn.apache.org/repos/asf/james/server/trunk/container-spring/src/main/config/examples/smtpserver-ssl.xml
>> >> >> >> >>
>> >> >> >> >> Tks,
>> >> >> >> >>
>> >> >> >> >> Eric
>> >> >> >> >>
>> >> >> >> >>
>> >> >> >> >> On 21/01/2011 21:58, Kevin Kovach wrote:
>> >> >> >> >>
>> >> >> >> >>> I'm trying to find some more complete information
on setting
>> up
>> >> >> SSL/TLS
>> >> >> >> >>> for
>> >> >> >> >>> the SMTP server.  I'm looking at the
>> >> >> >> >>> http://james.apache.org/server/3/config-tls.html
and I see
>> >> >> something
>> >> >> >> >>> about "in
>> >> >> >> >>> the sockets block, under the server-sockets
element, there
>> is..."
>> >> >> but I
>> >> >> >> >>> cannot find these xml elements in any of
the config files.  Am
>> I
>> >> >> >> missing
>> >> >> >> >>> something?
>> >> >> >> >>>
>> >> >> >> >>> I've also read
>> >> >> http://james.apache.org/server/3/config-smtp-lmtp.htmlbut
>> >> >> >> >>> don't see enough there to get me going.
>> >> >> >> >>>
>> >> >> >> >>> Thanks for any advice/hints on getting this
working.
>> >> >> >> >>>
>> >> >> >> >>> - Kevin
>> >> >> >> >>>
>> >> >> >> >>>
>> >> >> >> >>
>> >> >> >> >>
>> >> ---------------------------------------------------------------------
>> >> >> >> >> To unsubscribe, e-mail:
>> server-user-unsubscribe@james.apache.org
>> >> >> >> >> For additional commands, e-mail:
>> >> server-user-help@james.apache.org
>> >> >> >> >>
>> >> >> >> >>
>> >> >> >> >
>> >> >> >>
>> >> >> >>
>> ---------------------------------------------------------------------
>> >> >> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> >> >> For additional commands, e-mail:
>> server-user-help@james.apache.org
>> >> >> >>
>> >> >> >>
>> >> >> >
>> >> >>
>> >> >> ---------------------------------------------------------------------
>> >> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> >> For additional commands, e-mail: server-user-help@james.apache.org
>> >> >>
>> >> >>
>> >> >
>> >> >
>> >> > --
>> >> > "He has all the virtues I dislike and none of the vices I admire."
>> >> >
>> >> > -- Winston Churchill
>> >> >
>> >>
>> >> ---------------------------------------------------------------------
>> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> For additional commands, e-mail: server-user-help@james.apache.org
>> >>
>> >>
>> >
>> >
>> > --
>> > "He has all the virtues I dislike and none of the vices I admire."
>> >
>> > -- Winston Churchill
>> >
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> For additional commands, e-mail: server-user-help@james.apache.org
>>
>>
>
>
> --
> "He has all the virtues I dislike and none of the vices I admire."
>
> -- Winston Churchill
>

---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org


Mime
View raw message