[mew-dist 25430] Re: Fedora Core 2 + stunnel 3.26で送受信できない

2004年 10月 7日 (木) 10:41:33 JST

> SSL をコマンドラインで使うといまくいくということですが、どう使っている
> のか具体的に教えて下さい。

シェルから(正確には emacs のシェルモードから)次のようなコマンドを起動し、

/usr/local/sbin/stunnel -c -f -a $HOME/.certs -d localhost:10001 -v 1 -D debug -P none -r smtp.comcast.net:465 &

mew-config-alistの中では
    ("smtp-ssl"    . nil)
    ("smtp-server"   . "localhost")
    ("smtp-port"   . "10001")
のように指定しています。
(同様に POP 用にもう一つ 10002 番ポートで stunnel を起動しています。)

> なお、僕の環境では、POP over SSL と SMTP over SSL がうまくいくことを確
> 認しました。stunnel のバージョンは、4.05 です。

恥ずかしながら、以前バージョン 4 を使おうとして設定方法がわからず挫折して
以来、わざわざバージョン 3 を使うようにしていました。
今 Fedora Core 2 にもともと入っているバージョン 4.05 を試してみたところ
何もせずに使えそうだったのですが、残念ながら送信できない症状は同じです。
念のため 4.05 の場合の mew-debug のログを添付します。

中村

-------------- next part --------------

<SSL: >
2004.10.06 20:53:35 LOG5[25553:4143825024]: stunnel 4.05 on i386-redhat-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.7a Feb 19 2003


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143825024]: RAND_status claims sufficient entropy for the PRNG


<SSL: >
2004.10.06 20:53:35 LOG6[25553:4143825024]: PRNG seeded successfully
2004.10.06 20:53:35 LOG7[25553:4143825024]: Verify directory set to /home/xxxx/.certs
2004.10.06 20:53:35 LOG5[25553:4143825024]: FD_SETSIZE=1024, file ulimit=1024 -> 500 clients allowed
2004.10.06 20:53:35 LOG7[25553:4143825024]: FD 3 in non-blocking mode
2004.10.06 20:53:35 LOG7[25553:4143825024]: SO_REUSEADDR option set on accept socket
2004.10.06 20:53:35 LOG7[25553:4143825024]: 10170 bound to 127.0.0.1:10170
2004.10.06 20:53:35 LOG7[25553:4143825024]: FD 4 in non-blocking mode
2004.10.06 20:53:35 LOG7[25553:4143825024]: FD 5 in non-blocking mode
2004.10.06 20:53:35 LOG7[25553:4143825024]: No pid file being created


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143825024]: 10170 accepted FD=6 from 127.0.0.1:36397
2004.10.06 20:53:35 LOG7[25553:4143825024]: FD 6 in non-blocking mode


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143971248]: 10170 started
2004.10.06 20:53:35 LOG5[25553:4143971248]: 10170 connected from 127.0.0.1:36397
2004.10.06 20:53:35 LOG7[25553:4143971248]: FD 7 in non-blocking mode
2004.10.06 20:53:35 LOG7[25553:4143971248]: 10170 connecting 63.240.76.27:465
2004.10.06 20:53:35 LOG7[25553:4143971248]: remote connect #1: EINPROGRESS: retrying
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: FD=7, DIR=write


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: ok


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143971248]: Remote FD=7 initialized
2004.10.06 20:53:35 LOG7[25553:4143971248]: SSL state (connect): before/connect initialization
2004.10.06 20:53:35 LOG7[25553:4143971248]: SSL state (connect): SSLv3 write client hello A
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: FD=7, DIR=read


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: ok
2004.10.06 20:53:35 LOG7[25553:4143971248]: SSL state (connect): SSLv3 read server hello A
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: FD=7, DIR=read


<SSL: >
2004.10.06 20:53:35 LOG7[25553:4143971248]: waitforsocket: ok


<SSL: >
Unable to open "/dev/cryptonet"


<SSL: >
2004.10.06 20:53:36 LOG5[25553:4143971248]: VERIFY OK: depth=1, /C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority


<SSL: >
2004.10.06 20:53:36 LOG5[25553:4143971248]: VERIFY OK: depth=0, /C=US/ST=New Jersey/L=Middletown/O=AT&T/OU=for Comcast/CN=smtp.comcast.net
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 read server certificate A
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 read server done A


<SSL: >
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 write client key exchange A
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 write change cipher spec A
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 write finished A
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 flush data
2004.10.06 20:53:36 LOG7[25553:4143971248]: waitforsocket: FD=7, DIR=read


<SSL: >
2004.10.06 20:53:36 LOG7[25553:4143971248]: waitforsocket: ok
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL state (connect): SSLv3 read finished A
2004.10.06 20:53:36 LOG7[25553:4143971248]:    1 items in the session cache
2004.10.06 20:53:36 LOG7[25553:4143971248]:    1 client connects (SSL_connect())
2004.10.06 20:53:36 LOG7[25553:4143971248]:    1 client connects that finished
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 client renegotiatations requested
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 server connects (SSL_accept())
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 server connects that finished
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 server renegotiatiations requested
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 session cache hits
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 session cache misses
2004.10.06 20:53:36 LOG7[25553:4143971248]:    0 session cache timeouts
2004.10.06 20:53:36 LOG6[25553:4143971248]: Negotiated ciphers: RC4-SHA                 SSLv3 Kx=RSA   

<SSL: >
   Au=RSA  Enc=RC4(128)  Mac=SHA1


<SSL: >
2004.10.06 20:53:36 LOG7[25553:4143971248]: Socket closed on read
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL write shutdown (output buffer empty)
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL alert (write): warning: close notify
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL_shutdown retrying
2004.10.06 20:53:36 LOG7[25553:4143825024]: 10170 accepted FD=9 from 127.0.0.1:36399
2004.10.06 20:53:36 LOG7[25553:4143825024]: FD 9 in non-blocking mode


<SSL: >
2004.10.06 20:53:36 LOG7[25553:4143819696]: 10170 started
2004.10.06 20:53:36 LOG5[25553:4143819696]: 10170 connected from 127.0.0.1:36399
2004.10.06 20:53:36 LOG7[25553:4143819696]: FD 10 in non-blocking mode
2004.10.06 20:53:36 LOG7[25553:4143819696]: 10170 connecting 63.240.76.27:465
2004.10.06 20:53:36 LOG7[25553:4143819696]: remote connect #1: EINPROGRESS: retrying
2004.10.06 20:53:36 LOG7[25553:4143819696]: waitforsocket: FD=10, DIR=write


<SSL: >
2004.10.06 20:53:36 LOG7[25553:4143971248]: SSL socket closed on SSL_read
2004.10.06 20:53:36 LOG5[25553:4143971248]: Connection closed: 0 bytes sent to SSL, 63 bytes sent to socket
2004.10.06 20:53:36 LOG7[25553:4143971248]: 10170 finished (1 left)


<SSL: >
2004.10.06 20:53:36 LOG3[25553:4143825024]: Received signal 1; terminating


<SMTP SENTINEL>
exited abnormally with code 256