[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[msmtp-users] [PHISHING:XX] msmpt over TSL hanging

To: msmtp-users@lists.sourceforge.net
Subject: [msmtp-users] [PHISHING:XX] msmpt over TSL hanging
From: "W. Trevor King" <wking@...222...>
Date: Wed, 24 Mar 2010 13:05:52 -0400
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=msmtp-users>
List-help: <mailto:msmtp-users-request@lists.sourceforge.net?subject=help>
List-id: "General discussion, questions & answers" <msmtp-users.lists.sourceforge.net>
List-post: <mailto:msmtp-users@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/msmtp-users>, <mailto:msmtp-users-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/msmtp-users>, <mailto:msmtp-users-request@lists.sourceforge.net?subject=unsubscribe>
User-agent: Mutt/1.5.20 (2009-06-14)

========================================================================
PHISHING: Legitimate organizations NEVER ask for your SSN, password,
account number, or other personal data.  Do NOT ever provide such
information to anyone via email.
========================================================================



msmtp is hanging when I connect to my department's postfix server.
I suspect this is related to

  [msmtp-users] MSMTP hangs when connecting to Gmail
  From: Chris Black <chrisb@...223...> - 2009-03-18 17:40

  http://sourceforge.net/mailarchive/forum.php?thread_name=20090320080328.GD12511%40lambers.home&forum_name=msmtp-users

But since that thread never resolved, it's hard to tell.  Anyhow, here's
my hung command:

  wking@...224... ~ $ msmtp --host=einstein.physics.drexel.edu --tls=on \
    --port=465 --tls-certcheck=off --timeout 100 -d --serverinfo
  host                  = einstein.physics.drexel.edu
  port                  = 465
  timeout               = 100
  protocol              = smtp
  domain                = localhost
  auth                  = none
  user                  = (not set)
  password              = (not set)
  ntlmdomain            = (not set)
  tls                   = on
  tls_starttls          = on
  tls_trust_file        = (not set)
  tls_crl_file          = (not set)
  tls_key_file          = (not set)
  tls_cert_file         = (not set)
  tls_certcheck         = off
  tls_force_sslv3       = off
  tls_min_dh_prime_bits = (not set)
  tls_priorities        = (not set)
  msmtp: network read error: the operation timed out

My msmtp version is build on GnuTLS:

  wking@...224... ~ $ msmtp --version
  msmtp version 1.4.17
  TLS/SSL library: GnuTLS
  Authentication library: GNU SASL
  Supported authentication methods:
  plain cram-md5 digest-md5 external login
  IDN support: disabled
  NLS: enabled, LOCALEDIR is /usr/share/locale
  Keyring support: none
  System configuration file name: /etc/msmtprc
  User configuration file name: /home/wking/.msmtprc
  
  Copyright (C) 2008 Martin Lambers and others.
  This is free software.  You may redistribute copies of it under the terms of
  the GNU General Public License <http://www.gnu.org/licenses/gpl.html>.
  There is NO WARRANTY, to the extent permitted by law.

But I can connect without issue using gnutls-cli:

  wking@...224... ~ $ gnutls-cli -p 465 einstein.physics.drexel.edu
  Resolving 'einstein.physics.drexel.edu'...
  Connecting to '129.25.7.60:465'...
  - Ephemeral Diffie-Hellman parameters
   - Using prime: 1024 bits
   - Secret key: 1022 bits
   - Peer's public key: 1023 bits
  - Certificate type: X.509
   - Got a certificate list of 1 certificates.
   - Certificate[0] info:
    - subject `C=US,ST=Pennsylvania,L=Philadelphia,O=Drexel University...'.
  - Peer's certificate issuer is unknown
  - Peer's certificate is NOT trusted
  - Version: TLS1.0
  - Key Exchange: DHE-RSA
  - Cipher: AES-128-CBC
  - MAC: SHA1
  - Compression: NULL
  - Handshake was completed
  
  - Simple Client Mode:
  
  220 einstein.physics.drexel.edu ESMTP Postfix

A tcpdump trace of the original msmtp command:

  wking@...224... tmp $ sudo tcpdump -i wlan0 -Z wking host 129.25.7.60
  Password:
  tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
  listening on wlan0, link-type EN10MB (Ethernet), capture size 96 bytes
  12:36:29.459365 IP 192.168.0.3.55360 > einstein.physics.drexel.edu.urd: \
    S 1932685000:1932685000(0) win 5840 <mss 1460,sackOK,timestamp 182892918 0,nop,wscale 5>
  12:36:29.481556 IP einstein.physics.drexel.edu.urd > 192.168.0.3.55360: \
    S 3957779685:3957779685(0) ack 1932685001 win 5792 \
    <mss 1452,sackOK,timestamp 825940187 182892918,nop,wscale 7>
  12:36:29.481751 IP 192.168.0.3.55360 > einstein.physics.drexel.edu.urd: \
    . ack 1 win 183 <nop,nop,timestamp 182892940 825940187>
  12:38:09.483073 IP 192.168.0.3.55360 > einstein.physics.drexel.edu.urd: \
    F 1:1(0) ack 1 win 183 <nop,nop,timestamp 182992942 825940187>
  12:38:09.504545 IP einstein.physics.drexel.edu.urd > 192.168.0.3.55360: \
    . ack 2 win 46 <nop,nop,timestamp 825950190 182992942>
  12:38:09.505258 IP einstein.physics.drexel.edu.urd > 192.168.0.3.55360: \
    F 1:1(0) ack 2 win 46 <nop,nop,timestamp 825950190 182992942>
  12:38:09.505373 IP 192.168.0.3.55360 > einstein.physics.drexel.edu.urd: \
    . ack 2 win 183 <nop,nop,timestamp 182992964 825950190>
  <killed>
  7 packets captured
  7 packets received by filter
  0 packets dropped by kernel
Any ideas for further troubleshooting?

-- 
This email may be signed or encrypted with GPG (http://www.gnupg.org).
The GPG signature (if present) will be attached as 'signature.asc'.
For more information, see http://en.wikipedia.org/wiki/Pretty_Good_Privacy

My public key is at http://www.physics.drexel.edu/~wking/pubkey.txt

Attachment: pgpcKFyNvvRFo.pgp
Description: PGP signature

Prev by Date: [msmtp-users] New version of the msmtpq/msmtpQ scripts
Next by Date: [msmtp-users] ~~Hi~~
Previous by thread: [msmtp-users] New version of the msmtpq/msmtpQ scripts
Next by thread: [msmtp-users] ~~Hi~~
Index(es):
- Date
- Thread