我有一个预装了 Froxlor 的 Debian vServer。Froxlor 使用Dovecot
和Postfix
作为邮件服务器。我设置了一个万能电子邮件地址,它将所有邮件转发到我的私人邮箱。这一切都正常。
但是,使用 Thunderbird 等邮件客户端连接到帐户却不起作用。我按照以下说明安装了 SSL 证书和私钥本教程
根据 SSl-Check 网站,我的证书似乎没有问题。
/var/log/mail.log
Aug 24 10:18:10 mysvr dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=1.1.1.1, lip=1.1.1.2, TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session=<nsg7kNiQ5ABfWuR6>
Aug 24 10:18:10 mysvr dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=1.1.1.1, lip=1.1.1.2, TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session=<Ou49kNiQ/QBfWuR6>
Aug 24 10:18:12 mysvr postfix/smtpd[26083]: connect from ip52525.dynamic.myisp.com[1.1.1.1]
Aug 24 10:18:12 mysvr postfix/smtpd[26083]: improper command pipelining after EHLO from ip52525.dynamic.myisp.com[1.1.1.1]: QUIT\r\n
Aug 24 10:18:12 mysvr postfix/smtpd[26083]: disconnect from ip52525.dynamic.myisp.com[1.1.1.1]
Aug 24 10:18:12 mysvr dovecot: imap-login: Aborted login (no auth attempts in 0 secs): user=<>, rip=1.1.1.1, lip=1.1.1.2, session=<84JckNiQ8ABfWuR6>
Aug 24 10:18:13 mysvr dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=1.1.1.1, lip=1.1.1.2, TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session=<oFdnkNiQ5ABfWuR6>
Aug 24 10:18:13 mysvr dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=1.1.1.1, lip=1.1.1.2, TLS: SSL_read() failed: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca: SSL alert number 48, session=<QvRokNiQ+wBfWuR6>
答案1
问题在于 dovecot 的
10-ssl.conf
该文件仅接受 *.pem 文件,不接受 *.crt 文件