Forums

Subscribe via email Subscribe via email
Subscribe via rss
Guest
or Ask a Question
Add a reply View Replies (3) →
Vladimir
Vladimir
Offline

Clearos 5.2 to use TLS 1.2 when retrieving mail?

Resolved
0 votes
Hi all,

I have Clearos 5.2 working as local mail server. It retrieves mail from external mail server (hosting provider). Recently it stopped working with typical errors in maillog:

Jul 10 15:56:14 server1 fetchmail[13885]: starting fetchmail 6.3.6 daemon
Jul 10 15:56:14 server1 fetchmail[13885]: SSL connection failed.
Jul 10 15:56:14 server1 fetchmail[13885]: socket error while fetching from addr1@xyz.com@mail.xyz.com
Jul 10 15:56:14 server1 fetchmail[13885]: Query status=2 (SOCKET)
Jul 10 15:56:15 server1 fetchmail[13885]: SSL connection failed.
Jul 10 15:56:15 server1 fetchmail[13885]: socket error while fetching from addr2@xyz.com@mail.xyz.com
Jul 10 15:56:15 server1 fetchmail[13885]: Query status=2 (SOCKET)
Jul 10 15:56:15 server1 fetchmail[13885]: SSL connection failed.
Jul 10 15:56:15 server1 fetchmail[13885]: socket error while fetching from addr3@xyz.com@mail.xyz.com
Jul 10 15:56:15 server1 fetchmail[13885]: Query status=2 (SOCKET)
...

Seding mails works successfully.

Asking provider for support they replied last server security update removed support for old TLS encryptions, providing only TLS 1.2.

Is there any possibility to make Clearos 5.2 to use TLS 1.2 when retrieving mail?

Regards,
Vladimir
mail retrieval encryption
In Mail Retrieval
Saturday, July 13 2019, 06:19 PM
Subscribe via email
Share this post:

Accepted Answer

Nick Howitt
Nick Howitt
Offline
Saturday, July 13 2019, 09:39 PM - #Permalink
Resolved
0 votes
I am sorry to say, but 5.x went end of life a long time ago. 6.x is going end of life in a couple of months. 5.x has had no security updates for years and must be considered a vulnerable operating system. Please can you update to 7.x?
The reply is currently minimized Show
Responses (3)

  • Accepted Answer

    Vladimir
    Vladimir
    Offline
    Tuesday, July 16 2019, 11:53 AM - #Permalink
    Resolved
    0 votes
    Didn't have any success trying to update fetchmail nor openssl. I shall install 7.6 from scratch, then move data and configure mail. I hope all my fine-tunings (samba, postfix) still work on new version. I did test installation (clearos 7), communication with external mail server was fine.

    Nick, thank you for your suggestions.

    Regards,
    Vladimir
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Sunday, July 14 2019, 07:54 AM - #Permalink
    Resolved
    0 votes
    I'm afraid I have no idea. I blew away my 5.2 installation years ago. At a guess you may need to find a way of updating fetchmail and/or openssl. Try googling "fetchmail el5 rpm" and "openssl el5 rpm" to see if you can find more recent packages.
    The reply is currently minimized Show

  • Accepted Answer

    Vladimir
    Vladimir
    Offline
    Saturday, July 13 2019, 11:09 PM - #Permalink
    Resolved
    0 votes
    Thanks, Nick.

    Of course I understand that server should be upgraded. Do you know some quicker way to resolve this situation? Then, it will give me some time to prepare new operation system install.

    Regards!
    The reply is currently minimized Show
Your Reply