Pegasus Mail & Mercury

Welcome to the Community for Pegasus Mail and
The Mercury Mail Transport System, the Internet's longest-serving PC e-mail system!
Welcome to Pegasus Mail & Mercury Sign in | Join | Help
in
Home Blogs Forums Downloads Pegasus Mail Overview Mercury Overview Wiki

With SSL enabled, SMTP server stops receiving connections

Last post 10-21-2019, 9:23 by Sellerie. 11 replies.
Sort Posts: Previous Next
  •  07-08-2019, 8:50

    • NFG is not online. Last active: 10-07-2019, 13:08 NFG
    • Top 200 Contributor
    • Joined on 05-15-2007
    • Member
    • Points 510

    With SSL enabled, SMTP server stops receiving connections

    In order to send mail to many systems, including GMail, I had to bump up the compliance levels of my server, and so I created a certificate with Mercury and enabled SSL connections on Mercury S(MTP).

     This works for a while, but then it seizes up and stops accepting connections, reporting only 'SSL Error' and I have to restart Mercury.

    Has anyone else seen this?  Is there a solution?

    Filed under: ,
  •  07-08-2019, 17:52

    • Rolf Lindby is not online. Last active: 2019-10-23, 15:57 Rolf Lindby
    • Top 10 Contributor
    • Joined on 05-08-2007
    • Stockholm, Sweden
    • SuperStar
    • Points 26,380
    • BetaTeam Moderator SystemAdministrator

    Re: With SSL enabled, SMTP server stops receiving connections

    Assuming the error message is relevant the solution is most likely to update SSL handling, for instance by installing the 4.81 version of Mercury. It's still not publicly released but I can send you a download link if you would be interested to try it.

     

  •  07-08-2019, 23:35

    • NFG is not online. Last active: 10-07-2019, 13:08 NFG
    • Top 200 Contributor
    • Joined on 05-15-2007
    • Member
    • Points 510

    Re: With SSL enabled, SMTP server stops receiving connections

    I certainly would be keen to give it a go.  It's certainly too unreliable the way it is, haha.  =)
  •  07-09-2019, 5:14

    • Rolf Lindby is not online. Last active: 2019-10-23, 15:57 Rolf Lindby
    • Top 10 Contributor
    • Joined on 05-08-2007
    • Stockholm, Sweden
    • SuperStar
    • Points 26,380
    • BetaTeam Moderator SystemAdministrator

    Re: With SSL enabled, SMTP server stops receiving connections

    On its way, let's hope it will work better!


  •  07-10-2019, 11:03

    • NFG is not online. Last active: 10-07-2019, 13:08 NFG
    • Top 200 Contributor
    • Joined on 05-15-2007
    • Member
    • Points 510

    Re: With SSL enabled, SMTP server stops receiving connections

    Thank you for that.  I'll spin it up and report back.  
  •  07-10-2019, 23:55

    • NFG is not online. Last active: 10-07-2019, 13:08 NFG
    • Top 200 Contributor
    • Joined on 05-15-2007
    • Member
    • Points 510

    Re: With SSL enabled, SMTP server stops receiving connections

    Where would you like me to submit feedback?  Here, privately, or...?
  •  07-11-2019, 0:32

    • Rolf Lindby is not online. Last active: 2019-10-23, 15:57 Rolf Lindby
    • Top 10 Contributor
    • Joined on 05-08-2007
    • Stockholm, Sweden
    • SuperStar
    • Points 26,380
    • BetaTeam Moderator SystemAdministrator

    Re: With SSL enabled, SMTP server stops receiving connections

    Either way works fine. I'll probably see it quicker if you send it directly to me though!

     

  •  10-06-2019, 9:07

    • sheldows is not online. Last active: 10-22-2019, 8:17 sheldows
    • Not Ranked
    • Joined on 10-27-2015
    • Member
    • Points 105

    Re: With SSL enabled, SMTP server stops receiving connections

    After a day or so with SSL enabled, Mercury starts refusing connections / dropping connections do to SSL connection errors. Drives me nuts. I need SSL enabled for gmail and such to send emails. I find myself having to restart mercury every few days.
  •  10-07-2019, 12:00

    • Sellerie is not online. Last active: 2019/10/21, 10:28 Sellerie
    • Top 75 Contributor
    • Joined on 04-10-2014
    • Member
    • Points 1,155

    Re: With SSL enabled, SMTP server stops receiving connections

    I am using 4.80.145 with stunnel since many months without problems. Perhaps you should give stunnel a try too...
  •  10-07-2019, 12:18

    • NFG is not online. Last active: 10-07-2019, 13:08 NFG
    • Top 200 Contributor
    • Joined on 05-15-2007
    • Member
    • Points 510

    Re: With SSL enabled, SMTP server stops receiving connections

    The beta version Rolf mentioned has been functioning without issue since I installed it.  It certainly seems like this is the fix.
  •  10-19-2019, 7:42

    • sheldows is not online. Last active: 10-22-2019, 8:17 sheldows
    • Not Ranked
    • Joined on 10-27-2015
    • Member
    • Points 105

    Re: With SSL enabled, SMTP server stops receiving connections

    It seems to have fixed the issue

     

    The problem got triggered mostly when I received a lot of emails from gmail (or it seems)

     

    Oddly enough,  in the past year I was not running into this problem that often. Once in a while I would have to restart mercury. But within the last few months it seems like I had to restart mercury almost every few days.

     

    So I am thinking either a windows update changed how my server functions, openssl versions (too many open ssl version on same pc), or google and other companies started to use the newer version of TLS (more frequently), or there is an exploit that would crash the SSL.

     

    I use to run into this issue with two mail servers and an ssl tunnel (both using open), and one would crash the other eventually ssl did not work. Somehow there was an OpenSSL conflict. So I stopped using WinSSL  (SSLWRAP) and stoped using SSL for rthe most part on thhe other server, and started to use stunnel.

    This fixed the issue,  Stunnel SSL would not crashed, and for the other mail server would operate find, and mercury would operate fine. In the past, when SSL stopped working, all the programs that relied on OpenSSL (different version) would stop working.

    But in the past few months, this issue started to act up again. and in the last month very frequent.

     

    I am not much of a fan of OpenSSL Somehow a conflict starts to exist. It  would probably just be better to have a build version of the OpenSSL library using a different name, to avoid possible conflicts/caching.

     

    On my other server, Mercury would always have an SSL error (both Server 2008 and Server 2012), yet other mail servers using older openssl operated fine.

    I am hoping this fix will address this issue and will try mercury on that server too.

     

     

    But on my main server (Windows 10 Pro), it seems like the issue has been fixed.

     

    OpenSSL is a pain to work with. (Each program has its own version of OpenSSL dlls, some copy them to main windows directory, and I think there may of been a windows update that tried to remove/disable vulnerable versions)
    My conclusion, openssl can be a version conflict nightmare. On top of that, some programs use a proprietary/pre-compiled version of openSSL, so switching the library to a newer version may break the program.

     

    In the case of other run times, eg: c++ and vb, the names and version of the libraries are consistent, and newer version can be installed along side each other, but that's not the case of openssl, where newer version brick versions requiring older versions.

     

     I wish it was just as easy as to replace the OpenSSL libraries, but sadly enough its not.

     

     

     

     

     

     

     

     

  •  10-21-2019, 9:23

    • Sellerie is not online. Last active: 2019/10/21, 10:28 Sellerie
    • Top 75 Contributor
    • Joined on 04-10-2014
    • Member
    • Points 1,155

    Re: With SSL enabled, SMTP server stops receiving connections

    The OpenSSL problem with different versions exists only with Windows without WSL. Linux is more straight ahead and all applications knows & uses the path.

    Normally the maintainer(s) for an application is/are bugfixing such type of problems... We know about David's current illness, but his burnout is still there. PMail and Mercury urgently need updates specifically on what M$ has changed in terms of security, and the SSL issues are forcing all software vendors to fast patches. I have been waiting more than a year for the problems to be solved with "sentsince". As a quick fix, I can rewrite a PHP file on my e2-receiver and use "senton" instead. But that can not be a permanent state.

View as RSS news feed in XML

Contact | Advertise | Host provider: PraktIT | Terms of Use | Privacy Statement
Copyright © 2007-2011 David Harris / Peter Strömblad. | Pegasus Mail Home Page