Index: [thread] [date] [author] [stats] 
  From: Grzegorz Adamiak <gadamiak@docucollab.com>
  To  : <masqmail@marmaro.de>
  Date: Mon, 04 May 2009 12:27:39 +0200

Error: unexpected response from TLS/SSL wrapper

Hi,

I want to report a problem with using TLS/SSL wrapper with MasqMail. 
It's similar to one reported by Pierre Frenkiel: MasqMail fails to 
connect with error "host=xxx got unexpected response: depth=x".

It looks like MasqMail fails to parse wrapper's output. I tried a few 
variants of wrapper call:

   * /usr/bin/openssl s_client -connect smtp.gmail.com:587 -starttls 
smtp -quiet

     This results in error "unexpected response: depth=0" (the server 
certificate validation fails).

   * /usr/bin/openssl s_client -connect smtp.gmail.com:587 -starttls 
smtp -quiet -CApath /etc/ssl/certs/

     This results in error "unexpected response: depth=2" (the server 
certificate validation is successful).

   * /usr/bin/openssl s_client -connect smtp.gmail.com:587 -starttls 
smtp -CApath /etc/ssl/certs/ 2>/dev/null

     This results in error "unexpected response: CONNECT(00000003)" 
(notice no '-quiet').

Each above variant of OpenSSL call returns the first line of wrapper 
output as error.

   * /usr/bin/openssl s_client -connect smtp.gmail.com:587 -starttls 
smtp -quiet -CApath /etc/ssl/certs/ 2>/dev/null

     This results in timeout error as nothing is returned by OpenSSL.

I also tried using GnuTLS with a wrapper call:

   * /usr/bin/gnutls-cli --starttls --port 587 smtp.gmail.com

     This resulted in "unexpected response: Resolving 'smtp.gmail.com'", 
which again is the first line of wrapper output.

I can connect to the host manually without problems with either tool. I 
run MasqMail 0.2.21-4 on Ubuntu Server 8.10.

MasqMail looks like a perfect MTA for my purpose -- I want to use it for 
server machines which do have a permanent connection but do not run 24h. 
I need a light MTA with simple configuration to handle internal mail 
from services, which should be both: stored locally and forwarded to an 
external regular email account. I tried Exim, but it's to complicated 
and to heavy for me (I'm a beginner with Linux) and was looking at other 
alternatives I could find, but only MasqMail seems to work for my scenario.

Regards

-- Grzegorz
Index: [thread] [date] [author] [stats]