Search Criteria
Package Details: courier-mta 1.3.13-1
Package Actions
Git Clone URL: | https://aur.archlinux.org/courier-mta.git (read-only, click to copy) |
---|---|
Package Base: | courier-mta |
Description: | IMAP(s)/POP3(s) and SMTP Server with ML-manager, webmail and webconfig |
Upstream URL: | http://courier-mta.org |
Licenses: | GPL2 |
Conflicts: | courier-imap, courier-maildrop, imap-server, smtp-forwarder, smtp-server, ucspi-tcp |
Provides: | courier-imap, courier-maildrop, imap-server, pop3-server, smtp-forwarder, smtp-server |
Submitter: | svenstaro |
Maintainer: | vario |
Last Packager: | vario |
Votes: | 13 |
Popularity: | 0.000002 |
First Submitted: | 2012-10-13 09:56 (UTC) |
Last Updated: | 2024-09-21 14:27 (UTC) |
Dependencies (14)
- ca-certificates (ca-certificates-utils)
- courier-authlibAUR
- courier-unicodeAUR
- gcc-libs (gcc-libs-gitAUR, gccrs-libs-gitAUR, gcc11-libsAUR, gcc-libs-snapshotAUR)
- gdbm (gdbm-gitAUR)
- libidn2 (libidn2-gitAUR)
- mime-types (mailcap)
- pcre2 (pcre2-gitAUR)
- wget (wget-gitAUR, wurlAUR)
- expect (make)
- gnupg (gnupg-gitAUR, gnupg-largekeysAUR) (make)
- libldap (libldap-gnutlsAUR) (make)
- pam (pam-selinuxAUR) (make)
- libldap (libldap-gnutlsAUR) (optional)
Required by (876)
- aegir (requires smtp-forwarder)
- checkrun.sh-git (requires smtp-forwarder) (optional)
- courier-imap (requires courier-maildrop)
- courier-pythonfilter
- cronie-selinux (requires smtp-forwarder) (optional)
- cronie-selinux (requires smtp-server) (optional)
- ddclient-git (requires smtp-forwarder) (optional)
- e2fsprogs-git (requires smtp-forwarder) (optional)
- gitlab-ee (requires smtp-server) (optional)
- hylafaxplus (requires smtp-server) (optional)
- inn-git (requires smtp-forwarder) (make)
- lilac-git (requires smtp-forwarder) (optional)
- mailfromd (requires smtp-server)
- mediawiki-lts (requires smtp-forwarder) (optional)
- mlmmj (requires smtp-server)
- mutt-git (requires smtp-forwarder) (optional)
- mutt-slang (requires smtp-forwarder) (optional)
- oak (requires smtp-server) (make)
- openarc (requires smtp-server) (optional)
- openarc-git (requires smtp-server) (optional)
- Show 856 more...
Sources (14)
- courier-courierfilter.service
- courier-esmtpd-msa.service
- courier-esmtpd-ssl.service
- courier-esmtpd.service
- courier-imapd-ssl.service
- courier-imapd.service
- courier-mkdhparams.service
- courier-mkdhparams.timer
- courier-mta.conf
- courier-pop3d-ssl.service
- courier-pop3d.service
- courier.service
- http://downloads.sourceforge.net/project/courier/courier/1.3.13/courier-1.3.13.tar.bz2
- webmaild.service
Latest Comments
1 2 3 4 5 6 .. 9 Next › Last »
vario commented on 2024-04-24 14:53 (UTC)
Version 1.3.7 failing to compile with makepkg - I'll push it through as soon I can figure out what's going on.
vario commented on 2023-09-28 05:17 (UTC)
@arnaudlecam pkgconf is part of the base-devel group, which is a prerequisite of AUR use. See Getting started
arnaudlecam commented on 2023-09-27 20:27 (UTC) (edited on 2023-09-27 20:28 (UTC) by arnaudlecam)
Hi,
Could you please add 'pkgconf' (needed for libidn checking) in makedepends of the PKGBUILD ?
vario commented on 2022-12-18 07:27 (UTC)
Version 1.2.1 released after some deep debugging by andrej!
andrej commented on 2022-12-17 10:12 (UTC) (edited on 2022-12-17 10:13 (UTC) by andrej)
There is a workaround. Big thanks to Sam Varshavchik for finding it!
TL;DR: Append your D-H parameters (contents of the file set in
TLS_DHPARAMS
) at the end of your certificate files (TLS_CERTFILE
+ the suffixed domain-specific files).andrej commented on 2022-12-12 02:46 (UTC)
I’ve filed a bug upstream.
andrej commented on 2022-12-12 02:15 (UTC) (edited on 2022-12-12 02:25 (UTC) by andrej)
Not sure if this is caused by version 1.2 of
courier-mta
or version 3.0.x ofopenssl
, butcourier-mta
currently has a critical bug that rendersSTARTTLS
inoperable unless you connect to the server using a domain name that mismatches the domain name in the certificate(s) (which makes little sense, i.e.STARTTLS
is completely inoperable). The bug is tricky, because:STARTTLS
requesting the certified domain name failsSTARTTLS
requesting a bogus domain name works [useless]This^^^ can be reliably reproduced using (1) Thunderbird, (2) R2Mail2 and (3)
openssl s_client
. It affects both IMAP and SMTP. Fors_client
in particular, this is how you can test your server:The error symptom is either an abrupt connection termination with no messages and no errors or, sometimes, an error like this one:
The leading string seems to be something random, the stuff after
:
is stable.For easier debugging, I’ve pasted a trivial IMAP client on Pastebin.
It establishes a
STARTTLS
connection to a server, authenticates usingcram-sha256
and reads the mailbox status. As described above, settingserver
to the domain name in the certificate will fail (freeze in this case) whereas settingserver
to a bogus domain that resolves to the same mail server’s IP address (but is not in the certificate) will succeed.I think this is a critical bug, because it renders opportunistic
STARTTLS
security over SMTP’s port 25 inoperable. SSL on 465 works perfectly fine though. For IMAP the obvious workaround is to just use IMAP over SSL on 993 and give up onSTARTTLS
for the time being.vario commented on 2022-07-10 06:31 (UTC)
Versions keep appearing with nothing on the courier-announce list
vario commented on 2022-01-16 20:11 (UTC)
New version coming soon - just waiting on a fix for compile glitch in courier-1.1.6 package.
opensorcerer commented on 2021-12-28 13:32 (UTC)
@vario Right, sorry.
1 2 3 4 5 6 .. 9 Next › Last »