[kmail2] [Bug 363531] TLS negotiation was unsuccessful

via KDE Bugzilla bugzilla_noreply at kde.org
Mon Aug 15 04:36:20 BST 2016 

https://bugs.kde.org/show_bug.cgi?id=363531

kdebugs.anon134 at yahoo.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |kdebugs.anon134 at yahoo.com

--- Comment #3 from kdebugs.anon134 at yahoo.com ---
I am having the same problem described above.  This problem is repeatable 100%
of the time.  I can not send emails via SMTP using TLS over port 587 in KMail
Version 4.14.10.  :(  :(  Everything worked correctly in KMail yesterday, and
now with no configuration changes, this problem appeared.   Sending emails
*without* transport encryption  over port 587 works correctly.

Here are the error details:
1)  A dialog box pops up titled "Server Authentication - Mail Dispatcher
Agent", containing the following message:
"The server failed the authenticity check (smtp.q.com).

The certificate authority's certificate is invalid
The root certificate authority's certificate is not trusted for this purpose
The certificate cannot be verified for internal reasons"

2)  I click on the button labeled "Details".  A new Dialog box pops up labeled
"KDE SSL Information - Mail Dispatcher Agent" containing the following message:
"Current connection is secured with SSL.
Address: smtp.q.com
IP address: 205.169.121.111
Encrypttion: AES, using 256 bits of a 256 bit key
Details: Auth = RSA, Kx = RSA, MAC = SHA-1
SSL Version: SSLv3
Certificate chain: [greyed out drop-down menu]mail.q.com
======== Start Tabs =========
[Tab: Subject]
Common name: mail.q.com
Organization: CenturyLink
Organizational unit: Interactive Services Group
Country: US
State: Louisiana
City: Monroe
[Tab:Issuer]
Common name: Symantec Class 3 Secure Server SHA256 SSL CA
Organization: Symantec Corporation
Organizational unit: Symantec Trust Network
Country: US
State: [blank]
City: [blank]
======== End Tabs =========
Trusted:
NO, there were errors:
The certificate authority's certificate is invalid
The root certificate authority's certificate is not trusted for this purpose
The certificate cannot be verified for internal reasons
Validity period: 08/04/16 12:00 AM to 08/16/17 11:59 PM
Serial number: 41:5b:6d:03:67:ea:aa:ba:df:f7:a5:68:66:9e:f0:60
MD5 digest: acc7ed0f204b8991296cb80aa368e88a
SHA1 digest: b60c6182356616ee3dfb36d1df7f4c081cd5d7d7"

3)  Then I click the dialog button labeled "Close".

I am very puzzled by this, in part because KMail is configured to use TLS, yet
the certificate information displayed is for SSL.  I am further puzzled that
the SMTP  server is configured as "smtp.q.com", and NOT "mail.q.com" as
suggested by the SSL certificate information in the second dialog box.

Like sedrubal stated above, I too can send emails via SMTP using TLS using port
587 in Firebird version 45.2.

If it would help, I can temporarily donate  an email address with CenturyLink;
yet, I can not guarantee it will work outside the USA.

I was on the phone with my clown of an ISP (CenturyLink) for 4 hours, and they
were not able to resolve the problem - which leaves me quite screwed.

Please, please help!  :(  I really like KMail and REALLY do not want to switch
to Thunderbird or anything else.

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the Kdepim-bugs mailing list