Re: Postfix + AUTH/TLS + Outlook/OE problem

---

• From: Brian Candler <B.Candler@xxxxxxxxx>
• Date: Fri, 18 Aug 2006 18:56:59 +0100

---

On Thu, Aug 17, 2006 at 03:52:02PM -0500, Adrian Gonzalez wrote:

I'm seeing some very strange behavior with Outlook 2003 and Outlook Express
trying to send mail using TLS/SMTP Auth with Postfix 2.3 and FreeBSD
6.1-STABLE

It seems like Outlook/OE don't like the SSL handshake for some reason.
They connect to the server, issue STARTTLS, and disconnect during the
handshake, giving an "Error Number: 0x800CCC0B". I've tried both STARTTLS
and using 'wrapper mode' on port 465 with the same results. Other clients
like Thunderbird are able to send just fine using the same server
w/STARTTLS, so I'm assuming it's not a configuration/authentication issue.

I thought it could be related to the chained SSL certificate we're using
(GoDaddy), but the results were the same with a self-signed cert.

I also tried updating OpenSSL to the latest 'stable' release (0.9.7j), same
results.

I've been banging my head against the wall with this one

You don't seem to have considered the possibility that Microsoft software is
simply broken. When another client connects without any problem at all, this
would seem to be a pretty fair conclusion. You could always go and ask
Microsoft what "Error 0x800CCC0B" means though.

To make matters even stranger, in Outlook Express, when you create the
message and click send, you get the error message and the email stays in
the outbox. After that if you do a Send/Receive, OE is able to negotiate
TLS properly and sends the message just fine.

So the client fails first time, and works correctly the second. Sounds like
a client bug to me.
_______________________________________________
freebsd-isp@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe@xxxxxxxxxxx"

---

• References:
  • Postfix + AUTH/TLS + Outlook/OE problem
    • From: Adrian Gonzalez

• Prev by Date: Please reactivate your Yahoo! Groups account
• Next by Date: Re: Postfix + AUTH/TLS + Outlook/OE problem
• Previous by thread: Re: Postfix + AUTH/TLS + Outlook/OE problem
• Next by thread: Please reactivate your Yahoo! Groups account
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Kerry needs a news readerRe: Stay on Alpha forever? ... message that was generated by Microsoft software :-) ... emails out of HP's Exchange servers and mail gateways and came to the ... change behaviour of systems or modify the application set on the ... behaviour of Kerry's newsgroup or mail client. ... (comp.os.vms) Re: client end of ssl authenticaiton ... check an ssl box during setup. ... You're right about cert config not being *required* for the client ... So double-check with your ISP whether they support STARTTLS ... windows xp setup with outlook quit working too, ... (comp.mail.sendmail) Re: AcceptSecurityContext returning SEC_I_CONTINUE_NEEDED with empty SecBuffer ... > I am encountering a strange problem during the SSL handshake. ... > InitializeSecurityContext to the server. ... > communicates the token conatining the cert to the client. ... > the client now generates when given to the AcceptSecurityContext returns ... (microsoft.public.platformsdk.security) Re: Schannel and client certificates ... The mutual auth flag just tells AcceptSecurityContext to *request* a client ... certificate when doing the SSL handshake. ... will succeed regardless of whether the client sends a certificate or not. ... (microsoft.public.platformsdk.security) AcceptSecurityContext returning SEC_I_CONTINUE_NEEDED with empty SecBuffer ... I am encountering a strange problem during the SSL handshake. ... I am not sure whatz going on? ... I donot know what to pass to the client. ... (microsoft.public.platformsdk.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

unix.derkeiler.com  > Mailing-Lists  > FreeBSD  > isp  > 2006-08