|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| After many headaches accessing my gmail account with PIE, I decided to try Qmail. I downloaded the program and the open ssl files and put them in a directory on my CF card and added a seperate directory for mail. I added my gmail account per the gmail pop3 instructions but I get the following error when trying to access gmail: Failed to initialize SSL. I have both libeay32.dll and ssleay32.dll in the qmail directory. Any ideas what's wrong? I may try the new nPop to see if it works. Anyone else tried it yet?
Oh, RSS with qmail works great! |
|
|
|
H/PC Oracle Posts: | 16,175 |
Location: | Budapest, Hungary | Status: | |
| you need the right certificate (thawte or whatever). |
|
|
|
| Where would one get that certificate? |
|
|
|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| Ok, I searched the forums for "thawte" and found the thread. I downloaded the thawte-roots.zip file mentioned and extracted the ThawteServerCA.txt file. How do you create the ca.pem file? Just rename it?
Thanks! |
|
|
|
H/PC Oracle Posts: | 16,175 |
Location: | Budapest, Hungary | Status: | |
| yep, rename. but my guess is that it will work only one way (send or receive, i forgot ), use another file from that zip to have the other direction working too
it used to work both ways with that file
(do you know where to place it? ) |
|
|
|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| I renamed it to ca.pem and placed it in the security folder but it still didn't work. I get "failed to initialize" in both directions. Any other ideas? |
|
|
|
| You need to put the ca.pem in the security directory, i.e. QMail\security.
Do also have a look at the latest nPOP version (see reference elsewhere in this forum) as it now also supports SSL. |
|
|
|
H/PC Oracle Posts: | 16,175 |
Location: | Budapest, Hungary | Status: | |
| try the other thawte certs in that zip maybe.. i remember someone got it workign that way.
nPOP ah yes i must try it asap lol |
|
|
|
Factorite (Elite) Posts: | 104 |
Location: | Seattle | Status: | |
| Do the other thawte certs have to be renamed to other file names? I'm having the same initialization error w/Gmail, and trying to log into a regular SSL account doesn't even give an error message! It just opens and closes immediately. |
|
|
|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| I tried nPop but am again getting SSL errors. nPop says "verify failed of SSL unable to get local issuer certificate (20)". I have put the npopssl.dll in the npop directory. I've done some searching and it seems others have used nPop on their 720's with no problems. I wish these programs had better instructions!
Update - OK, I set the SSL on both POP3 and SMTP to STARTTLS and now it tries to connect but times out.
Edited by slick204 2006-03-03 9:56 PM
|
|
|
|
H/PC Oracle Posts: | 16,175 |
Location: | Budapest, Hungary | Status: | |
| sorry but STARTTLS is good for only SMTP if you're using gmail.
gmail POP needs TLS (not sure if it is called so in nPOP, different in different email apps. it may be called just SSL) |
|
|
|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| NPop does have TLS and when I changed the SSL setup to TLS it connected! I could have sworn I tried that. Oh well, thanks for the help, as usual. I wish there was a place that listed initial settings for some of these programs that are more difficult to get going. |
|
|
|
Factorite (Elite) Posts: | 104 |
Location: | Seattle | Status: | |
| I'm confused here: is TLS the same as STARTTLS? If not, how did you change the SSL setup to TLS? |
|
|
|
Factorite (Junior) Posts: | 47 |
Location: | Stranded in Iowa | Status: | |
| Confusing as heck, isn't it? They are different, I guess. I'm referring to nPop not Qmail3. I started a new thread on nPop that this should be moved to. In the POP3 tab, check SSL then in the setup window pick TLS 1.0. In the SMTP tab, check SSL then in the setup window pick STARTTLS. Qmail doesn't have these options. Good luck! |
|
|
|
| My version of Qmail3 is working with GMail. I think all you need to do is save below certificate as ca.pem in your "\security" folder.
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
|
|
|