james-server-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Norman Maurer <nor...@apache.org>
Subject Re: James 3 and SSL/TLS
Date Sun, 23 Jan 2011 19:31:43 GMT
If I'm not wrong the bug is in this release. Let me know if a newer jdk fix it..

Bye,
Norman


2011/1/23 Kevin Kovach <kovach@gmail.com>:
> Actually, I've tried TLS and STATTLS and they both seem to behave the same
> way.  You might be on to something though with my Java version.  I am
> using Java(TM) SE Runtime Environment (build 1.6.0_11-b03).  I'll get a
> newer release and see if that helps.  Thanks.
>
> - Kevin
>
> On Sun, Jan 23, 2011 at 5:40 AM, Norman Maurer <norman@apache.org> wrote:
>
>> Hi Kevin,
>>
>> do you use TLS or STARTTLS ? Could give me the version of java you are
>> using ? I remember there was some bug in 1.6 in the past which raised
>> this exception.
>>
>> Bye,
>> Norman
>>
>>
>> 2011/1/23 Kevin Kovach <kovach@gmail.com>:
>> > Interesting.  Well, the latest snapshot is better.  I was able to
>> retrieve
>> > some mail with POP and TLS enabled.  Thanks!
>> >
>> > Unfortunately, now I am seeing the following message when trying to
>> either
>> > send mail with TLS enabled on my smtp server, or retrieve mail with TLS
>> > enabled on the imap server.  I've triple checked the configuration, and
>> they
>> > all look the same.  There's not a whole lot to it.  Is there more than
>> just
>> > that small <tls></tls> block needed to enable tls for smtp and imap?
>> >
>> > INFO  23:20:48,957 | james.smtpserver | ID=19911387 Connection
>> established
>> > from my.host.com (192.168.1.1)
>> > DEBUG 23:20:48,976 | james.smtpserver | ID=19911387
>> > org.apache.james.smtpserver.JamesWelcomeMessageHandler disconnect=false
>> > DEBUG 23:20:49,024 | james.smtpserver | Unable to process request
>> > javax.net.ssl.SSLException: Unexpected end of handshake data
>> > at
>> com.sun.net.ssl.internal.ssl.Handshaker.checkThrown(Handshaker.java:954)
>> >  at
>> >
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.checkTaskThrown(SSLEngineImpl.java:465)
>> > at
>> >
>> com.sun.net.ssl.internal.ssl.SSLEngineImpl.readNetRecord(SSLEngineImpl.java:701)
>> >  at
>> > com.sun.net.ssl.internal.ssl.SSLEngineImpl.unwrap(SSLEngineImpl.java:669)
>> > at javax.net.ssl.SSLEngine.unwrap(SSLEngine.java:607)
>> >  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:868)
>> > at org.jboss.netty.handler.ssl.SslHandler.decode(SslHandler.java:605)
>> >  at
>> >
>> org.jboss.netty.handler.codec.frame.FrameDecoder.callDecode(FrameDecoder.java:282)
>> > at
>> >
>> org.jboss.netty.handler.codec.frame.FrameDecoder.messageReceived(FrameDecoder.java:216)
>> >  at
>> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:274)
>> > at
>> org.jboss.netty.channel.Channels.fireMessageReceived(Channels.java:261)
>> >  at org.jboss.netty.channel.socket.nio.NioWorker.read(NioWorker.java:350)
>> > at
>> >
>> org.jboss.netty.channel.socket.nio.NioWorker.processSelectedKeys(NioWorker.java:281)
>> >  at org.jboss.netty.channel.socket.nio.NioWorker.run(NioWorker.java:201)
>> > at
>> >
>> org.jboss.netty.util.internal.IoWorkerRunnable.run(IoWorkerRunnable.java:46)
>> >  at
>> >
>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
>> > at
>> >
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
>> >  at java.lang.Thread.run(Thread.java:619)
>> > Caused by: javax.net.ssl.SSLException: Unexpected end of handshake data
>> > at
>> >
>> com.sun.net.ssl.internal.ssl.HandshakeInStream.read(HandshakeInStream.java:81)
>> >  at java.io.InputStream.read(InputStream.java:85)
>> > at
>> >
>> com.sun.net.ssl.internal.ssl.UnknownExtension.<init>(HelloExtensions.java:204)
>> >  at
>> >
>> com.sun.net.ssl.internal.ssl.HelloExtensions.<init>(HelloExtensions.java:69)
>> > at
>> >
>> com.sun.net.ssl.internal.ssl.HandshakeMessage$ClientHello.<init>(HandshakeMessage.java:252)
>> >  at
>> >
>> com.sun.net.ssl.internal.ssl.ServerHandshaker.processMessage(ServerHandshaker.java:135)
>> > at
>> com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:516)
>> >  at com.sun.net.ssl.internal.ssl.Handshaker$1.run(Handshaker.java:458)
>> > at java.security.AccessController.doPrivileged(Native Method)
>> >  at
>> >
>> com.sun.net.ssl.internal.ssl.Handshaker$DelegatedTask.run(Handshaker.java:875)
>> > at org.jboss.netty.handler.ssl.SslHandler$2.run(SslHandler.java:999)
>> >  at
>> >
>> org.jboss.netty.handler.ssl.ImmediateExecutor.execute(ImmediateExecutor.java:37)
>> > at
>> >
>> org.jboss.netty.handler.ssl.SslHandler.runDelegatedTasks(SslHandler.java:996)
>> >  at org.jboss.netty.handler.ssl.SslHandler.unwrap(SslHandler.java:886)
>> > ... 12 more
>> >
>> >
>> >
>> > On Sat, Jan 22, 2011 at 2:41 PM, Norman Maurer <norman@apache.org>
>> wrote:
>> >
>> >> Hi,
>> >>
>> >> remotemanager was removed lately. All the management operations are
>> >> now exposed via JMX. Just use jconsole (for example) to connect to
>> >> JAMES. The mailserver.xml was removed and merged with other
>> >> configuration files (in detail in usersrepository.xml,
>> >> mailetcontainer.xml and domainlist.xml).
>> >>
>> >> Bye,
>> >> Norman
>> >>
>> >> 2011/1/22 Kevin Kovach <kovach@gmail.com>:
>> >> > This seems to be missing some things.  Like, I don't see the
>> >> > remotemanager.xml config file or the mailserver.xml config file?  Have
>> >> these
>> >> > been deprecated or rolled into another file?  I don't see their config
>> in
>> >> > any of the other files, but I suppose I could have missed it?
>> >> >
>> >> > - Kevin
>> >> >
>> >> > On Sat, Jan 22, 2011 at 3:58 AM, Norman Maurer <norman@apache.org>
>> >> wrote:
>> >> >
>> >> >> What version are you using ? There was a bug in M2 related to
>> >> >> RetrCmdHandler. Maybe you should try this one:
>> >> >>
>> >> >>
>> >> >>
>> >>
>> https://repository.apache.org/content/groups/snapshots/org/apache/james/james-server-container-spring/3.0-M3-SNAPSHOT/james-server-container-spring-3.0-M3-20110121.141825-287-bin.tar.gz
>> >> >>
>> >> >> Bye,
>> >> >> Norman
>> >> >>
>> >> >> 2011/1/22 Kevin Kovach <kovach@gmail.com>:
>> >> >> > Thanks for the reply.  It appears to be configured now.  The
server
>> >> >> starts
>> >> >> > and stays up.
>> >> >> >
>> >> >> > Unfortunately, everything seems very slow and the connection
keeps
>> >> timing
>> >> >> > out when trying to pop mail with TLS enabled.  I don't know
if this
>> >> could
>> >> >> be
>> >> >> > because I have something else configured incorrectly?
>> >> >> >
>> >> >> > I turned on DEBUG and am seeing the following in my
>> james-server.log
>> >> and
>> >> >> > pop3server.log ...
>> >> >> >
>> >> >> > DEBUG 02:33:11,919 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > AUTH
>> >> >> > DEBUG 02:33:11,921 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > CAPA
>> >> >> > DEBUG 02:33:11,937 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > USER
>> >> >> > DEBUG 02:33:11,939 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > PASS
>> >> >> > DEBUG 02:33:11,961 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > STAT
>> >> >> > DEBUG 02:33:11,969 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > LIST
>> >> >> > DEBUG 02:33:11,984 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > UIDL
>> >> >> > DEBUG 02:33:11,987 | james.pop3server | Lookup command handler
for
>> >> >> command:
>> >> >> > RETR
>> >> >> >
>> >> >> > then a minute a so later it times out.  The resources don't
seem to
>> be
>> >> >> > taxed.  Not sure what is going on.  Any further hints would
be
>> >> >> appreciated.
>> >> >> >  Thanks.
>> >> >> >
>> >> >> > - Kevin
>> >> >> >
>> >> >> >
>> >> >> > On Sat, Jan 22, 2011 at 1:04 AM, Eric Charles <eric@apache.org>
>> >> wrote:
>> >> >> >
>> >> >> >> Hi,
>> >> >> >>
>> >> >> >> The page is outdated for james 3.0.
>> >> >> >> You will find example for the tls block on
>> >> >> >>
>> >> >>
>> >>
>> https://svn.apache.org/repos/asf/james/server/trunk/container-spring/src/main/config/examples/smtpserver-ssl.xml
>> >> >> >>
>> >> >> >> Tks,
>> >> >> >>
>> >> >> >> Eric
>> >> >> >>
>> >> >> >>
>> >> >> >> On 21/01/2011 21:58, Kevin Kovach wrote:
>> >> >> >>
>> >> >> >>> I'm trying to find some more complete information
on setting up
>> >> SSL/TLS
>> >> >> >>> for
>> >> >> >>> the SMTP server.  I'm looking at the
>> >> >> >>> http://james.apache.org/server/3/config-tls.html and
I see
>> >> something
>> >> >> >>> about "in
>> >> >> >>> the sockets block, under the server-sockets element,
there is..."
>> >> but I
>> >> >> >>> cannot find these xml elements in any of the config
files.  Am I
>> >> >> missing
>> >> >> >>> something?
>> >> >> >>>
>> >> >> >>> I've also read
>> >> http://james.apache.org/server/3/config-smtp-lmtp.htmlbut
>> >> >> >>> don't see enough there to get me going.
>> >> >> >>>
>> >> >> >>> Thanks for any advice/hints on getting this working.
>> >> >> >>>
>> >> >> >>> - Kevin
>> >> >> >>>
>> >> >> >>>
>> >> >> >>
>> >> >> >>
>> ---------------------------------------------------------------------
>> >> >> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> >> >> For additional commands, e-mail:
>> server-user-help@james.apache.org
>> >> >> >>
>> >> >> >>
>> >> >> >
>> >> >>
>> >> >> ---------------------------------------------------------------------
>> >> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> >> For additional commands, e-mail: server-user-help@james.apache.org
>> >> >>
>> >> >>
>> >> >
>> >>
>> >> ---------------------------------------------------------------------
>> >> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> >> For additional commands, e-mail: server-user-help@james.apache.org
>> >>
>> >>
>> >
>> >
>> > --
>> > "He has all the virtues I dislike and none of the vices I admire."
>> >
>> > -- Winston Churchill
>> >
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
>> For additional commands, e-mail: server-user-help@james.apache.org
>>
>>
>
>
> --
> "He has all the virtues I dislike and none of the vices I admire."
>
> -- Winston Churchill
>

---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org


Mime
View raw message