Bonjour,
je fini de configurer un serveur mail avec postfix/dovecote,...
j'arrive bien a acceder a monserveur mail via thunderbird sur un post distant mail.whita.net port 993.
Depuis mon serveur la commande openssl s_client -connect mail.whita.net:993
répond:
CONNECTED(00000003)
depth=2 O = Digital Signature Trust Co., CN = DST Root CA X3
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
verify return:1
depth=0 CN = mail.whita.net
verify return:1
---
Certificate chain
0 s:CN = mail.whita.net
i:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
1 s:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
i:O = Digital Signature Trust Co., CN = DST Root CA X3
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = mail.whita.net
issuer=C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3106 bytes and written 386 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 78AC1331547EDAF85C4FC480056C819085507A6D4B8E8F515E986D6BB23170B7
Session-ID-ctx:
Resumption PSK: BF035C2F78330555069E7A36EC50DD6A9F6551ADAC2E24332EBCFA3BC4DB8F25898C05D2BABB0B6013D1AB477F59F059
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 05 9d 39 1e 19 42 46 9a-0f 8d 9e 17 bc 51 df ae ..9..BF......Q..
0010 - 32 40 83 76 05 2e 84 ba-a2 25 52 66 e0 08 5d b7 2@.v.....%Rf..].
0020 - cd 7e d7 83 1f 4d b8 1f-fe a6 d4 76 f0 6f 96 c6 .~...M.....v.o..
0030 - fa 4e 14 2b 4b 8b 95 70-dd b6 0c 72 b4 74 78 e9 .N.+K..p...r.tx.
0040 - 91 71 d5 77 8d 6f 31 72-f6 97 da 18 c8 01 27 0a .q.w.o1r......'.
0050 - d8 14 ec 5c bd d0 3f e7-43 a0 42 86 b6 a6 04 01 ...\..?.C.B.....
0060 - ae 81 b4 b0 6c 3d f1 95-9d 2f 10 cd d5 1f 9b f0 ....l=.../......
0070 - 3d 59 33 f2 bc 9b ae 9e-ca 78 67 9c 1c f9 9f 04 =Y3......xg.....
0080 - 7c 7a f5 af 1d e6 41 af-ae 26 4b 33 5c 05 3f 56 |z....A..&K3\.?V
0090 - a4 e1 93 de 00 da 58 ed-4e 9b e5 47 52 03 da fc ......X.N..GR...
00a0 - a4 62 f9 7c 84 a8 b5 b0-d8 39 24 e6 f4 78 bc 53 .b.|.....9$..x.S
00b0 - c6 e4 24 8c a7 27 8f 13-90 4b 63 3a f3 65 99 f9 ..$..'...Kc:.e..
00c0 - 01 6f 61 2b 70 10 78 b5-a5 38 a7 b8 9e bb 47 6a .oa+p.x..8....Gj
Start Time: 1600197859
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: DA0AF20B9C9BF31084072F5A73D326FE2190F58E7C5F9B067911BA7735BBBCE7
Session-ID-ctx:
Resumption PSK: C8309564E0E3DCF1E77484D8872A4C110BF6691E1E46FD5021282404010BF03B4308EC04E8A31E0A85DC3E93B4DAD226
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 05 9d 39 1e 19 42 46 9a-0f 8d 9e 17 bc 51 df ae ..9..BF......Q..
0010 - 6d 1d 06 db 20 01 14 1b-8c 8f 57 65 96 a1 65 4a m... .....We..eJ
0020 - 05 55 19 60 0f 3f a1 b1-36 2b b9 6d 9b 23 20 be .U.`.?..6+.m.# .
0030 - c2 64 95 e3 2b bc 1e 41-db e3 1c 3b de 06 05 5f .d..+..A...;..._
0040 - c4 9c b0 0d fb 2e 52 43-8d ed ca a5 4a ac 4c eb ......RC....J.L.
0050 - 68 5f 53 aa 95 c8 19 f7-a9 c0 57 f3 0e d8 64 9c h_S.......W...d.
0060 - 60 66 5c 32 3d cd 96 df-6d c9 38 2f 70 ac 4d 26 `f\2=...m.8/p.M&
0070 - 00 3a a0 a1 8b 49 21 10-54 66 0e eb ed 44 ee 5a .:...I!.Tf...D.Z
0080 - 59 b3 9b 17 b9 b2 a5 55-c0 84 5e 3c 80 4d ae b8 Y......U..^<.M..
0090 - 54 8f 56 06 b8 13 ed f1-9b f6 14 4c d8 d9 5e 21 T.V........L..^!
00a0 - 44 f7 d0 94 23 1f 45 34-51 a3 49 ab 33 8a 81 d4 D...#.E4Q.I.3...
00b0 - 09 ca c5 e5 8f 30 3b e6-07 ad 24 c6 89 57 5b 19 .....0;...$..W[.
00c0 - f5 b3 4f 8c b4 2c 19 60-3e 67 94 09 d8 22 28 f6 ..O..,.`>g..."(.
Start Time: 1600197859
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Ubuntu) ready.
Tous cela semble me dire que la conf va bien. maintenant j'ai installer Roundcube.
Lors de la tentative de connexion a roundcube avec mes identifiant de boite mail :
Erreur de connexion au serveur de stockage.
une fois trouver le log de roundcube : /var/www/roundcube/logs:
[15-Sep-2020 19:29:40 UTC] PHP Warning: stream_socket_client(): unable to connect to ssl://mail.whita.net:993 (php_network_getaddresses: getaddrinfo failed: Name or service not known) in /var/www/roundcube/program/lib/Roundcube/rcube_imap_generic.php on line 1025
[15-Sep-2020 19:29:40 +0000]: <5tsddkb9> IMAP Error: Login failed for admin@whita.net against ssl://mail.whita.net from 91.172.239.193. Could not connect to ssl://mail.whita.net:993: php_network_getaddresses: getaddrinfo failed: Name or service not known in /var/www/roundcube/program/lib/Roundcube/rcube_imap.php on line 200 (POST /?_task=login&_action=login)
pour information ma configuration roundcube:
<?php
/* Local configuration for Roundcube Webmail */
$config['debug_level'] = 4;
$config['imap_debug'] = true;
$config['imap_conn_options'] = array(
'ssl' => array('verify_peer' => false, 'verfify_peer_name' => false),
'tls' => array('verify_peer' => false, 'verfify_peer_name' => false),
);
$config['db_dsnw'] = 'mysql://roundcubeuser:xxxxxxxxxx@localhost/roundcube';
$config['default_host'] = ' ssl://mail.whita.net';
$config['default_port'] = 993;
$config['smtp_server'] = 'tls://mail.whita.net';
$config['support_url'] = '';
$config['plugins'] = array('acl', 'additional_message_headers', 'archive', 'attachment_reminder', 'autologon', 'database_attachments', 'emoticons', 'enigma', 'example_addressbook', 'filesystem_attachments', '
jqueryui', 'password', 'vcard_attachments', 'zipdownload');
$config['language'] = 'fr_FR';
Si vous avez des idées sur ce qui coince, je suis preneur. n'hésitez pas si vous avez bein de pus d'information.
Merci par avance,
BBO