1 |
Hi, |
2 |
|
3 |
I've posted my question in forums and cyrus list, but I still have no |
4 |
reply... so, I decided to post here too. |
5 |
|
6 |
|
7 |
I've updated my cyrus-imapd |
8 |
and now I'm not able to make it work again. Every time I try to fetch |
9 |
my mail (using pop3) I get an error in my MUA: |
10 |
|
11 |
Error occurred while processing mail: |
12 |
-ERR [SYS/PERM] Error initializing TLS |
13 |
|
14 |
|
15 |
and I see this in log files: |
16 |
|
17 |
Oct 5 18:22:21 afrodita pop3[14410]: DBERROR db4: Database handles |
18 |
still open at environment close Oct 5 18:22:21 afrodita pop3[14410]: |
19 |
DBERROR db4: Open database handle: /var/imap/tls_sessions.db |
20 |
|
21 |
|
22 |
This is my imapd.conf: |
23 |
|
24 |
|
25 |
# grep . /etc/imapd.conf|grep -v "^#" |
26 |
configdirectory: /var/imap |
27 |
defaultpartition: default |
28 |
partition-default: /var/spool/imap |
29 |
partition-news: /var/spool/cyrus/news |
30 |
newsspool: /var/spool/news |
31 |
altnamespace: no |
32 |
unixhierarchysep: no |
33 |
lmtp_downcase_rcpt: yes |
34 |
sievedir: /var/imap/sieve |
35 |
tls_ca_path: /etc/ssl/postfix |
36 |
tls_cert_file: /etc/ssl/postfix/newcert.pem |
37 |
tls_key_file: /etc/ssl/postfix/newkey.pem |
38 |
tls_ca_file: /etc/ssl/postfix/cacert.pem |
39 |
admins: cyrus |
40 |
hashimapspool: yes |
41 |
allowanonymouslogin: no |
42 |
allowplaintext: yes |
43 |
popminpoll: 1 |
44 |
autocreatequota: 0 |
45 |
umask: 027 |
46 |
sasl_mech_list: PLAIN |
47 |
sasl_minimum_layer: 0 |
48 |
sasl_pwcheck_method: saslauthd |
49 |
sasl_auxprop_plugin: sasldb |
50 |
sasl_auto_transition: no |
51 |
tls_session_timeout: 1440 |
52 |
tls_cipher_list: TLSv1:SSLv3:SSLv2:!NULL:!EXPORT:!DES:!LOW:@STRENGTH |
53 |
|
54 |
|
55 |
Notice I'm using postfix certs, cause I used: |
56 |
|
57 |
|
58 |
#tls_cert_file: /etc/ssl/cyrus/newcert.pem |
59 |
#tls_key_file: /etc/ssl/cyrus/newkey.pem |
60 |
#tls_ca_file: /etc/ssl/certs/cyrus-imapd-ca.pem |
61 |
|
62 |
|
63 |
and now /etc/ssl/certs/cyrus-imapd-ca.pem does not exist, but I'm not |
64 |
sure if this is really important, we're talking about self-generated |
65 |
self-signed certs... I can generate new ones, but old were fine... |
66 |
|
67 |
And those are cyrus use: |
68 |
|
69 |
|
70 |
[ebuild R ] net-mail/cyrus-imapd-2.2.13-r1 USE="ssl tcpd -afs |
71 |
-drac -idled -kerberos -pam -snmp -unsupported_8bit" |
72 |
|
73 |
|
74 |
|
75 |
TIA, |
76 |
-- |
77 |
Arnau Bria |
78 |
http://blog.emergetux.net |
79 |
Bombing for peace is like fucking for virginity |
80 |
-- |
81 |
gentoo-user@g.o mailing list |