bug-anubis
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug-anubis] 2 bugs and an annoyance


From: Pascal
Subject: [bug-anubis] 2 bugs and an annoyance
Date: Thu, 26 Jun 2008 01:13:47 -0500
User-agent: Thunderbird 2.0.0.14 (Windows/20080421)

1.  On a server with IP address 10.1.1.1 and anubisrc containing:

bind 10.1.1.1:25
remote-mta 127.0.0.1

Anubis gives the error "Loop not allowed. Connection rejected." It appears Anubis includes code to avoid loops, but this code has a bug wherein if both bind and remote IPs are on the same box and the port numbers match, it incorrectly believes that it would be talking to itself.

CLIENT <<< 235 Authentication successful.(32)
> [6752] UID:99 (nobody), GID:99, EUID:99, EGID:99
[6752] Loop not allowed. Connection rejected.
> [6745] Child [6752] finished. Failed with status 1. 0 clients left.


2. I have been using Anubis v4.0 compiled with OpenSSL instead of GnuTLS. Anubis v4.1 only supports GnuTLS. After upgrading, when Thunderbird connects to Anubis I am now prompted for a certificate. Same thing after I downgraded to Anubis v4.0 with GnuTLS. It appears GnuTLS asks for a client cert while OpenSSL does not.

GnuTLS:
CLIENT >>> STARTTLS(10)
CLIENT <<< 220 Ready to start TLS(24)
> [6353] Initializing the TLS/SSL connection with MUA...
<Thunderbird prompts for client cert here>
- Key Exchange: DHE RSA
- Ephemeral DH using prime of 776 bits.
- Protocol: TLS 1.0
- Certificate Type: X.509
- Compression: NULL
- Cipher: AES 128 CBC
- MAC: SHA
CLIENT >>> EHLO [192.168.1.5](20)

OpenSSL:
CLIENT >>> STARTTLS(10)
CLIENT <<< 220 Ready to start TLS(24)
> [6627] Initializing the TLS/SSL connection with MUA...
> [6627] TLSv1/SSLv3 connection using AES256-SHA (256 bits)
CLIENT >>> EHLO [192.168.1.5](20)


3. I have tested using Anubis v4.1 and v4.0, with both OpenSSL and GnuTLS using Thunderbird as the MUA. In all cases I am unable to send emails with a 150k file attachment if TLS is enabled. As soon as I disable TLS between Thunderbird and Anubis, the email goes through fine. 10k file attachments work fine. Not sure the exact size required to break it. Not sure if this bug is in Anubis or Thunderbird.

-Pascal




reply via email to

[Prev in Thread] Current Thread [Next in Thread]