Hi all,
I did a yum and custombuild update last week and ever since it is no longer possible to connect to any of our servers using the iPhone/iOS mail app with SSL on. The message is (for example): "The IMAP server mail.truskmore.nl is not responding".
There is no problem connecting with Android or linux/windows email applications.
There is a Letsencrypt SSL certificate that is valid. I have tested with MX toolbox and SSLlabs SSLtest, which both give green/ok. Only with SSL Labs it does give errors when it emulates older Safari browsers:
However, the problems (also) happen with recent Apple devices (e.g. iPhone12), so I would expect this to have newer software.
On some iPhones, the connection works again with SSL off, but that is not desirable. I have reinstalled on two servers all software (./build all) to ensure all the latest libraries, etc. are linked, but no improvement.
Any suggestions as to what the cause and the solution may be?
Thank you and kind regards, Harro
I did a yum and custombuild update last week and ever since it is no longer possible to connect to any of our servers using the iPhone/iOS mail app with SSL on. The message is (for example): "The IMAP server mail.truskmore.nl is not responding".
There is no problem connecting with Android or linux/windows email applications.
There is a Letsencrypt SSL certificate that is valid. I have tested with MX toolbox and SSLlabs SSLtest, which both give green/ok. Only with SSL Labs it does give errors when it emulates older Safari browsers:
Safari 6 / iOS 6.0.1 | Server sent fatal alert: handshake_failure |
Safari 7 / iOS 7.1 | Server sent fatal alert: handshake_failure |
Safari 7 / OS X 10.9 | Server sent fatal alert: handshake_failure |
Safari 8 / iOS 8.4 | Server sent fatal alert: handshake_failure |
Safari 8 / OS X 10.10 | Server sent fatal alert: handshake_failure |
However, the problems (also) happen with recent Apple devices (e.g. iPhone12), so I would expect this to have newer software.
On some iPhones, the connection works again with SSL off, but that is not desirable. I have reinstalled on two servers all software (./build all) to ensure all the latest libraries, etc. are linked, but no improvement.
Any suggestions as to what the cause and the solution may be?
Thank you and kind regards, Harro