Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 08 Nov 2013 10:47:40 +0100
From:      Andrea Venturoli <ml@netfence.it>
To:        "R. Scott Evans" <freebsd-questions@rsle.net>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: [Half OT] Mavericks' Mail and SSL
Message-ID:  <527CB33C.5090804@netfence.it>
In-Reply-To: <527905F3.6020501@rsle.net>
References:  <52718078.8080702@netfence.it> <5272C747.8030805@rsle.net> <5273EF3F.8040307@netfence.it> <5273FD23.7090207@rsle.net> <527554CE.1040605@netfence.it> <527905F3.6020501@rsle.net>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On 11/05/13 15:51, R. Scott Evans wrote:

> I'm using a CA signed certificate.

So I suspect this might be the cause... I'll see if I can try with a CA 
signed certificate.




> It's worth mentioning I also do SMTP Auth

Me too, but I don't get that far.
The connection is lost long before the HELO stage.





> I only edit the .mc and let sendmail generate the .cf from that so I've
> included the relevant portions of the .mc instead (below).
> ...

Look similar enough to mine... but I'll check better when I can.



Meanwhile, I was able to get an ssldump:

New TCP connection #1: xxxx.xxxxxx(51073) <-> host-43-19.xxxx.it(465)
1 1  0.0051 (0.0051)  C>S  Handshake
       ClientHello
         Version 3.1
         cipher suites
         Unknown value 0xff
         Unknown value 0xc024
         Unknown value 0xc023
         Unknown value 0xc00a
         Unknown value 0xc009
         Unknown value 0xc007
         Unknown value 0xc008
         Unknown value 0xc028
         Unknown value 0xc027
         Unknown value 0xc014
         Unknown value 0xc013
         Unknown value 0xc011
         Unknown value 0xc012
         Unknown value 0xc026
         Unknown value 0xc025
         Unknown value 0xc02a
         Unknown value 0xc029
         Unknown value 0xc005
         Unknown value 0xc004
         Unknown value 0xc002
         Unknown value 0xc003
         Unknown value 0xc00f
         Unknown value 0xc00e
         Unknown value 0xc00c
         Unknown value 0xc00d
         Unknown value 0x3d
         Unknown value 0x3c
         Unknown value 0x2f
         TLS_RSA_WITH_RC4_128_SHA
         TLS_RSA_WITH_RC4_128_MD5
         Unknown value 0x35
         TLS_RSA_WITH_3DES_EDE_CBC_SHA
         TLS_DHE_DSS_WITH_NULL_SHA
         Unknown value 0x6b
         Unknown value 0x33
         Unknown value 0x39
         TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
         compression methods
                   NULL
1 2  0.0077 (0.0026)  S>C  Handshake
       ServerHello
         Version 3.1
         session_id[32]=
           e9 8a 9b b2 8b ca b4 bb 51 89 a7 94 8a 87 29 bb
           c1 bd f2 8e 05 03 3b 92 33 ca 32 53 d2 3b ce d9
         cipherSuite         Unknown value 0x2f
         compressionMethod                   NULL
1 3  0.0077 (0.0000)  S>C  Handshake
       Certificate
1 4  0.0077 (0.0000)  S>C  Handshake
       CertificateRequest
         certificate_types                   rsa_sign
         certificate_types                   dss_sign
         certificate_types                 unknown value
         certificate_authority
           30 81 8f 31 0b 30 09 06 03 55 04 06 13 02 49 54
           31 10 30 0e 06 03 55 04 08 13 07 42 6f 6c 6f 67
           6e 61 31 25 30 23 06 03 55 04 0a 13 1c 4e 65 74
           46 65 6e 63 65 20 64 69 20 56 65 6e 74 75 72 6f
           6c 69 20 41 6e 64 72 65 61 31 22 30 20 06 03 55
           04 03 13 19 4e 65 74 46 65 6e 63 65 20 72 6f 6f
           74 20 63 65 72 74 69 66 69 63 61 74 65 31 23 30
           21 06 09 2a 86 48 86 f7 0d 01 09 01 16 14 70 72
           6f 62 6c 65 6d 73 40 6e 65 74 66 65 6e 63 65 2e
           69 74
       ServerHelloDone
1    0.0711 (0.0633)  C>S  TCP FIN
1    0.0713 (0.0002)  S>C  TCP FIN
New TCP connection #2: xxxx.xxxxxx(51074) <-> host-43-19.xxxx.it(465)



If anyone could make something out of this...

  bye & Thanks
	av.



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?527CB33C.5090804>