SSL/TLS / STARTTLS encoded password

    After my nearly perfect upgrade to Debian 9.1 and i-mscp 1.5.1 only one issu open now:



    Code
    1. Sep 12 08:58:10 web4you-server-02 dovecot: imap-login:
    2. Disconnected (no auth attempts in 1 secs): user=<>,
    3. rip=178.197.224.65, lip=5.9.210.214, TLS handshaking: SSL_accept()
    4. failed: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert
    5. certificate unknown: SSL alert number 46,
    6. session=<9GDxkPhYhjGyxeBB>
    7. 12 08:58:10 web4you-server-02
    8. postfix/smtpd[26631]: disconnect from
    9. a6-158.smtp-out.eu-west-1.amazonses.com[54.240.6.158] ehlo=2 starttls=1
    10. mail=1 rcpt=1 data=1 quit=1 commands=7[/spoiler]

    I-MSCP 1.5.3 - Debian 9 Stretch

    Maybe this is not the real corresponding error message for my problem. If i use encoded passord in my thunderbird there is the error in my attachement. But a "tail -f /var/log/mail.log does not give a special output for it.

    Excerpt from https://github.com/i-MSCP/imsc….4.x/docs/1.4.x_errata.md
    Chapter 1.4.0


    Code
    1. Mail account passwords
    4. New password scheme for Mail accounts is SHA512-crypt. We chose SHA512-crypt because it is supported by all software products integrated with i-MSCP. Update is automatic. Mail account passwords will be hashed automatically during upgrade.
    7. Be aware that due to this change, only the plaintext authentication mechanisms (PLAIN, LOGIN) are now supported. This is due to the fact that non-plaintext authentication mechanisms require either plaintext passwords or password scheme that belongs to the chosen authentication mechanism. To avoid problems with plaintext passwords that are sent during authentication processes, it is recommended to use SSL/TLS connections only.
    10. You must not forget to inform your customers about this change. Mail clients configured to use authentication mechanisms such as MD5-CRAM will fail to authenticate.

    i-MSCP 1.5.1 + patches - debian stretch (latest) - DebugBar 1.1.2 - LetsEncrypt 3.5.0 - Mailman 2.0.4 - RoundcubePlugins 2.0.1

    We already given the reasons of the error you posted many time. And if I remember well, the answer was given in a thread where you were involved. That becomes a bit annoying to repeat the same thing again and again.


    So, once again:


    Regarding the SSL certificate error, both IMAP and SMTP server names set in your mail client must match with the subject alternative name from your SSL certificate and of course, that last must be valid.


    For the password, read the i-MSCP errata file as stated by @Heppi


    Thread closed.

    badge.php?id=1239063037&bid=2518&key=1747635596&format=png&z=547451206

    SSH key for online support