I have a user who has Mac OS 10.4.8 with Entourage X. The email server is sendmail 8.13.8 and is setup to use STARTTLS on a CentOS 4.4 system. It appears from everything I have googled that only Entourage 2004 will properly function with STARTTLS. Has anybody any experience with Entourage X ... specifically is there something I am missing regarding the CentOS server setup or are all Entourage prior to the 2004 version indeed broken in regards to STARTTLS?
I have just done the usual stuff that seems to work for Thunderbird, Evolution, Outlook, Mac Mail and the latest Eudora. On the sendmail server side:
define(`confAUTH_OPTIONS', `A p y')dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
(purposely not showing the certificate config)
On the Entourage X client side:
Checked the box "SMTP service requires secure connection (SSL) Checked the box "SMTP server requires authentication Checked the box "Use the same settings as receiving mail server"
Entourage X returns an error indicating:
"The SMTP server for "MRIC" does not recognize any of the authentication methods supported by Entourage."
Can anyone verify that Entourage X does not work with STARTTLS and/or suggest a work around? I am hoping that upgrading to Entourage 2004 is not the only answer.
Thanks for you rhelp.
Quoting "Paul R. Ganci" ganci@nurdog.com:
I have a user who has Mac OS 10.4.8 with Entourage X. The email server is sendmail 8.13.8 and is setup to use STARTTLS on a CentOS 4.4 system.
[snip]
I have just done the usual stuff that seems to work for Thunderbird, Evolution, Outlook, Mac Mail and the latest Eudora. On the sendmail server side:
define(`confAUTH_OPTIONS', `A p y')dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
(purposely not showing the certificate config)
On the Entourage X client side:
Checked the box "SMTP service requires secure connection (SSL) Checked the box "SMTP server requires authentication Checked the box "Use the same settings as receiving mail server"
Entourage X returns an error indicating:
"The SMTP server for "MRIC" does not recognize any of the authentication methods supported by Entourage."
Maybe the version of Entourage you have doesn't support STARTTLS. Try enabling implicit SSL port in Sendmail's configuration by adding this line:
DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')
After adding that line, Sendmail will listen on port 465 (smtps) in addition to port 25. You'll have SSL on port 465, and on port 25 you can have plaintext or TLS (after client issues STARTTLS).
On Fri, 12 Jan 2007, Aleksandar Milivojevic wrote:
Quoting "Paul R. Ganci" ganci@nurdog.com:
I have a user who has Mac OS 10.4.8 with Entourage X. The email server is sendmail 8.13.8 and is setup to use STARTTLS on a CentOS 4.4 system.
[snip]
I have just done the usual stuff that seems to work for Thunderbird, Evolution, Outlook, Mac Mail and the latest Eudora. On the sendmail server side:
define(`confAUTH_OPTIONS', `A p y')dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
(purposely not showing the certificate config)
On the Entourage X client side:
Checked the box "SMTP service requires secure connection (SSL) Checked the box "SMTP server requires authentication Checked the box "Use the same settings as receiving mail server"
Entourage X returns an error indicating:
"The SMTP server for "MRIC" does not recognize any of the authentication methods supported by Entourage."
Maybe the version of Entourage you have doesn't support STARTTLS. Try enabling implicit SSL port in Sendmail's configuration by adding this line:
DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')
After adding that line, Sendmail will listen on port 465 (smtps) in addition to port 25. You'll have SSL on port 465, and on port 25 you can have plaintext or TLS (after client issues STARTTLS).
This is good advice, but the question is forcing us to guess. It'd be a lot easier to answer you with some more information:
* what port is Entourage trying to contact? * is it using STARTTLS or straight SMTP/SSL? * could there be any firewalls hijacking traffic?
Assuming you know the IP address of the Mac client machine, try launching a tcpdump session on the mail server
sudo tcpdump -A -s0 host $CLIENT_ADDR
Entourage will try to contact one of three ports:
25 (smtp) 465 (smtps) 587 (submission)
tcpdump will show you what port the client is addressing and whether the client is using STARTTLS (port 25 or 587) or straight SSL (port 465). In the former case, the tcpdump output will include the string 'Ready to start TLS' before any certificate info is sent over the wire. If the connection is straight SSL, it won't be there.
If the client is not on your LAN, it's possible that there's a firewall that's redirecting SMTP traffic, esp. on port 25. To reduce the damage caused by zombies and spambots, lots of networks these days don't allow port-25 packets to go directly to remote mail servers, silently redirecting them to their own servers.
Paul Heinlein wrote:
On Fri, 12 Jan 2007, Aleksandar Milivojevic wrote:
Maybe the version of Entourage you have doesn't support STARTTLS. Try enabling implicit SSL
This is what I suspect. I was hoping someone could actually confirm.
port in Sendmail's configuration by adding this line:
DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')
After adding that line, Sendmail will listen on port 465 (smtps) in addition to port 25. You'll have SSL on port 465, and on port 25 you can have plaintext or TLS (after client issues STARTTLS).
I tried to do this and discovered that sendmail stopped listening on port 25. I am not sure what is up with this since the sendmail.mc config does say:
dnl # The following causes sendmail to additionally listen to port 465,
I'll experiment some more but if somebody has an idea as to why this might be occurring I am all ears.
This is good advice, but the question is forcing us to guess. It'd be a lot easier to answer you with some more information:
- what port is Entourage trying to contact?
Sorry, but by a standard setup I meant port 25
- is it using STARTTLS or straight SMTP/SSL?
This was one of my questions. From googling I suspect not and asked if someone could confirm.
- could there be any firewalls hijacking traffic?
No I mentioned that Mac Mail and Thunderbird both work from this same machine. They both use the standard port 25 and both use STARTTLS.
Assuming you know the IP address of the Mac client machine, try launching a tcpdump session on the mail server
sudo tcpdump -A -s0 host $CLIENT_ADDR
Entourage will try to contact one of three ports:
25 (smtp) 465 (smtps) 587 (submission)
tcpdump will show you what port the client is addressing and whether the client is using STARTTLS (port 25 or 587) or straight SSL (port 465). In the former case, the tcpdump output will include the string 'Ready to start TLS' before any certificate info is sent over the wire. If the connection is straight SSL, it won't be there.
Thanks this is a very useful idea. It will certainly help me confirm what Entourage X is actually trying to do.
Paul R. Ganci wrote:
DAEMON_OPTIONS(`Port=smtps, Name=TLSMTA, M=s')
After adding that line, Sendmail will listen on port 465 (smtps) in addition to port 25. You'll have SSL on port 465, and on port 25 you can have plaintext or TLS (after client issues STARTTLS).
I tried to do this and discovered that sendmail stopped listening on port 25. I am not sure what is up with this since the sendmail.mc config does say:
dnl # The following causes sendmail to additionally listen to port 465,
I'll experiment some more but if somebody has an idea as to why this might be occurring I am all ears.
I got this working. I don't know why it didn't seem to work the first time. I will find out tomorrow if this fixes the users Entourage X problem. Thanks for all your help.
Greetings, list!
I get kernel panic while trying to install CentOS 4.4 on an oldish PC.
The machine is P III 500 MHz (this info is displayed at the beginning of boot). 256M RAM at the moment (I plan to add more later). I have 386 version of the installer.
The boot begins ok - I get the "CentOS" screen (from CD-ROM), and the boot process after that begins ok, until...
I hope the following helps you understand the problem:
-------------------
mounting [etc. etc.] running install... running /sbin/loader
[After this there is kernel panic with a lot of cryptic texts. Here's some that seems to be relevant: ]
Call Trace: cdrom_start_packet_command [code...] cdrom_timer_expiry [code] ide_do_rw_cdrom [code] start_rewuest [code] ide_do_request [code] ide_timer_expiry [code] ide_timer_expiry [code] run_timer_softirq [code] __do_softirq [code] do_softirq [code] ============== do_IRQ [code] common_interrupt [code] default_idle [code] apm_cpu_idle [code] cpu_idle [code] start_keernel [code] Code: [code] <0>Kernel panic - not syncing: Fatal exception in interrupt
----------------------
What could I try to get this working?
Thanks, Jussi Hirvi Helsinki
-- Jussi Hirvi * Green Spot Topeliuksenkatu 15 C * 00250 Helsinki * Finland Tel. & fax +358-9-493 981 Mobile +358-40-771 2098 (only text messages) jussi.hirvi@greenspot.fi * http://www.greenspot.fi/
Jussi Hirvi wrote:
============== do_IRQ [code] common_interrupt [code] default_idle [code] apm_cpu_idle [code] cpu_idle [code] start_keernel [code] Code: [code] <0>Kernel panic - not syncing: Fatal exception in interrupt
try booting with "noapm".
-
Aleksandar Milivojevic -
Jussi Hirvi -
Mike Fedyk -
Paul Heinlein -
Paul R. Ganci