I can successfully send messages via SMTP/SSL with Alpine 2.22 on
a an Ubuntu 10.04 system with OpenSSL 1.1.1d. The SMTP Server is set
to:
my-smtp-host:465/ssl/novalidate-cert/user=my-user-name.
[...]
Connections to the host from the newer system with OpenSSL s_client all succeed:
$ openssl s_client -starttls smtp -tls1_2 -connect my-smtp-host:465 CONNECTED(00000003)
I can successfully send messages via SMTP/SSL with Alpine 2.22 on
a an Ubuntu 10.04 system with OpenSSL 1.1.1d. The SMTP Server is set
to:
my-smtp-host:465/ssl/novalidate-cert/user=my-user-name.
When I use the same .pinerc, or configure a new .pinerc with the
same settings, on a newer system (Ubuntu 20.04/OpenSSL 1.1.1f), with
either Alpine 2.25 or Alpine 2.22, sending fails with "SSL negotiation failed". Debug information in the Alpine journal shows only:
IMAP 11:39:56 11/6 mm_log babble: Trying IP address [my-smtp-ip]
sslfailure: host=my-smtp-host reason=SSL negotiation failed
Connections to the host from the newer system with OpenSSL s_client all succeed:
$ openssl s_client -starttls smtp -tls1_2 -connect my-smtp-host:465 CONNECTED(00000003)
$ openssl s_client -starttls smtp -tls1_1 -connect my-smtp-host:465 CONNECTED(00000003)
$ openssl s_client -starttls smtp -tls1 -connect my-smtp-host:465 CONNECTED(00000003)
The SMTP host does not support Verbose SMTP posting, so I don't
know how to gather more information.
Eduardo,
Thanks for pointing me in the right direction. It seems the DH
key on the SMTP server is small, and newer versions of OpenSSL do not
allow connections to it. I'm trying to get the sysadmins to fix it, but
in the meantime, I've had to find another SMTP server.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 296 |
Nodes: | 16 (2 / 14) |
Uptime: | 50:51:38 |
Calls: | 6,649 |
Calls today: | 1 |
Files: | 12,200 |
Messages: | 5,330,301 |