Fetchmail and tls

From: Tim Woodall <devnull@xxxxxxxxxxxxx>
Date: Mon, 19 Dec 2005 22:18:00 +0000 (UTC)

Is there any way to force fetchmail to use tls and to drop the
connection if it's not available?

I've tried the option "sslproto tls1" in fetchmailrc but that doesn't work
if the server doesn't offer tls but does just offer an unencrypted
connection.

The option ssl would appear to do the trick except that that connects on
a different port and putting in a port 110 and I'm back to it still
working if the server doesn't offer encryption at all.

Any ideas?

Tim.

p.s. This has come about because an upgrade to mailutils-pop3d (debian)
on my server replaced the inetd line with one that didn't have the
--sslcert and --sslkey options but this wasn't immediately obvious
because everything still worked.

--
God said, "div D = rho, div B = 0, curl E = - @B/@t, curl H = J + @D/@t,"
and there was light.

http://tjw.hn.org/ http://www.locofungus.btinternet.co.uk/
.

Prev by Date: Re: Emacs pound sign in non-windowed mode?
Next by Date: Re: Networking and internet access
Previous by thread: External RAID problems - suggestions please?
Next by thread: Plan for authenticated webdav access - comments sought
Index(es):
- Date
- Thread

Relevant Pages

Re: Changing Exchange Smarthost settings/SSL
... Change the POP server to pop.att.yahoo.com. ... encrypted connection. ... the username and password for SBC and again checked TLS encryption. ... So I'm assuming TLS is not the same as SSL that I'm supposed to use. ...
(microsoft.public.windows.server.sbs)
Getting both TLS and SSL working for exim4 smtp.
... The server listens on port 25 and is working fine with TLS. ... Put it this way - I and my parents can all connect with TLS turned on in thunderbird. ... 2006-11-08 20:35:27 TLS recv error on connection from dhcp57.home.chrissearle.org: A TLS fatal alert has been received.: Bad record MAC ... 2006-11-08 20:35:27 TLS send error on connection from dhcp57.home.chrissearle.org: The specified session has been invalidated for some reason. ...
(Debian-User)
RE: what will happen to outbound TLS connection if receivers cert has expired?
... Not all servers will fail if a certificate is invalid, this is dependant on their configuration. ... Turning off certificate validation would partially defeat the purpose of TLS. ... what will happen to outbound TLS connection if receiver's cert has expired? ...
(microsoft.public.exchange2000.general)
Re: Secure TN3270
... Also reflections and Entire Connection. ... Subject: Secure TN3270 ... Guide and it seems like the TLS protocol would be the way to go, ... opposed to the SSL protocol. ...
(bit.listserv.ibm-main)
Re: ldapclient and eDirectory
... > against Novell eDirectory with TLS for some time now. ... For some reason, when ... it tries to make an unecrypted connection to ... > try to have all our LDAP servers accept only TLS encrypted sessions. ...
(comp.unix.solaris)