Ssl

iPhone 無法在 dovecot 進行身份驗證

  • April 23, 2014

我已經建立了一個使用 postfix 和 dovecot 執行的郵件伺服器。主要配置如here我還從Startssl.com創建了一個簽名證書。IMAP 在埠 993 上執行。在我的電腦上一切正常。我可以發送和檢索電子郵件,證書也可以。在我的 iPhone 上添加相同的郵件帳戶時,它只是抱怨伺服器沒有響應。使用 ssl 詳細日誌記錄dovecot.log說:

2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x10, ret=1: before/accept initialization [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: before/accept initialization [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 read client hello A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server hello A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write certificate A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 write server done A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2001, ret=1: SSLv3 flush data [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL: where=0x2002, ret=-1: SSLv3 read client certificate A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Warning: SSL failed: where=0x2002: SSLv3 read client certificate A [172.17.42.1]
2014-04-23 09:15:08 imap-login: Info: Disconnected (no auth attempts in 0 secs): user=<>, rip=172.17.42.1, lip=172.17.0.2, TLS handshaking: Disconnected, session=<xMU9K7L3TgCsESoB>

所以我降落在這裡

Aborted login (no auth attempts) means that the client isn't even attempting to log in. Most likely you have disable_plaintext_auth=yes (default) and the client isn't configured to use SSL/TLS (or you've also set ssl=no).

我嘗試disable_plaintext_auth=no顯式設置,並且我的手機上也開啟了 SSL。

iPhone 和 SSL 有什麼特別之處嗎?

該問題與我的配置或設置無關。我創建了長度為 8192 位的私鑰。事實證明,iPhone不支持這種長度的密鑰

將密鑰長度減少到 4096 位解決了這個問題。

引用自:https://serverfault.com/questions/590753