james-server-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Arnau Rebassa (JIRA)" <server-...@james.apache.org>
Subject [jira] [Created] (JAMES-2631) TLS 1.2 problems with Certificate Request
Date Thu, 13 Dec 2018 11:02:00 GMT
Arnau Rebassa created JAMES-2631:

             Summary: TLS 1.2 problems with Certificate Request
                 Key: JAMES-2631
                 URL: https://issues.apache.org/jira/browse/JAMES-2631
             Project: James Server
          Issue Type: Bug
    Affects Versions: 3.0.1
            Reporter: Arnau Rebassa
         Attachments: james_response.png, server_request.png

We are using james 3.0.1 configured to use TLS in remote deliveries. The sending of emails
over TLS is working fine but we have problems sending emails to a particular server which
performs a "Certificate Request". When this happens, in a tcpdump capture I can see that, James
returns an error Alert (Level: Fatal, Description: Certificate Unknown).
The certificate used by the remote server is issued by a well know CA. In the picture server_request.png
you can see as the remote server requests a "Certificate request" to the client (in this case
to James).
In the file james_reponse.png you can see how James sends a Fatal alert.
I have been looking into the documentation but I haven't found the way to specify a keystore
in the mailetcontainer.xml. Is this possible? Anyone knows how to fix this?

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org

View raw message