**** BEGIN LOGGING AT Wed Jan 08 02:59:59 2014 Jan 08 13:33:50 pabs3: again borked :-// Jan 08 13:34:38 this shows I should finally drop the openmoko.org mail account Jan 08 13:34:48 just it's a terrible pita Jan 08 19:02:33 DocScrutinizer05: something else must be going on, I didn't touch it since it started working again Jan 08 19:03:46 yeah, I guess something locking up Jan 08 19:04:13 what's load? Jan 08 19:04:24 CPU busy? Jan 08 19:04:31 mysql busy? Jan 08 19:04:44 I/O errors? Jan 08 19:05:36 I'd really appreciate somebody else (creating account and) sending a mail, to test Jan 08 19:06:39 anyway I repeated all steps I did on my box yesterday, to no effect Jan 08 19:08:35 having a look Jan 08 19:08:53 load average: 0.32, 0.46, 0.44 Jan 08 19:08:59 zero CPU usage Jan 08 19:09:51 constant attack on SMTP? Jan 08 19:09:54 no I/O errors that I can see Jan 08 19:10:40 ^^^ sth I see on my own exposed box every day Jan 08 19:10:45 exim mainlog is pretty quiet Jan 08 19:10:54 hmmm Jan 08 19:11:14 might not show up in exim log Jan 08 19:11:22 since related to PAM Jan 08 19:11:45 pam_unix(smtp:auth): check pass; user unknown Jan 08 19:11:47 pam_unix(smtp:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= Jan 08 19:11:48 pam_succeed_if(smtp:auth): error retrieving information about user aaron Jan 08 19:12:36 this often causes my local mail client to even fetch mail via POP from same box Jan 08 19:13:21 causes fail to Jan 08 19:14:50 shows up on my box in /var/log/secure Jan 08 19:17:25 if such attack floods smtp pam then I can see how my auth fails Jan 08 19:19:00 don't have that log. nothing from saslauthd in /var/log/auth.log though Jan 08 19:22:47 DocScrutinizer05: tailing the mainlog, could you try now? Jan 08 19:24:09 sure Jan 08 19:24:36 stalls Jan 08 19:24:43 aborting Jan 08 19:24:53 stopped it Jan 08 19:24:54 nothing in the log at all Jan 08 19:25:26 dang, it resumes sensing of stuff in outbox, that's what sucks most Jan 08 19:25:29 ah, no, two lines: TLS error on connection from... A TLS packet with unexpected length was received. Jan 08 19:25:45 * pabs3 goes googling Jan 08 19:26:14 I already did, not much helpful Jan 08 19:26:23 maybe you got more luck Jan 08 19:30:02 http://www.gossamer-threads.com/lists/exim/users/91407 Jan 08 19:30:41 exim -bP tls_on_connect_ports says tls_on_connect_ports = 465 Jan 08 19:32:37 starting tshark to figure out wtf is happening on the wire Jan 08 19:34:00 highlight me when you need another faling send Jan 08 19:35:06 ok ready Jan 08 19:35:14 DocScrutinizer05: ^ Jan 08 19:35:50 ok, Jan 08 19:36:16 sending Jan 08 19:36:43 going to abort... Jan 08 19:37:02 aborted Jan 08 19:37:17 highlight me when you need another faling send Jan 08 19:37:19 hmm, only when you said "going to abort..." did the log show up Jan 08 19:37:28 weird Jan 08 19:38:04 last packet in wireshark is the TLSv1 Server Hello Jan 08 19:38:10 then that's just a side effect of aborting the transmission/send Jan 08 19:39:04 http://wstaw.org/m/2014/01/07/plasma-desktopuB3389.png of yesterday Jan 08 19:39:55 content as follows: 44: I send some TLS data, 45 you send TLS ACK, 46 I send TCP ACK to the TLS ACK Jan 08 19:39:56 ah, there the packets are. was doing it over ssh, I guess there was some delay Jan 08 19:40:26 then 300.00 seconds stall Jan 08 19:40:41 then abort from your end, due to timeout Jan 08 19:41:45 I'd think when I send a "packet with unexpected length" then you shouldn't send a ACK Jan 08 19:42:08 no idea Jan 08 20:41:23 DocScrutinizer05: hmm, succeeded in sending myself a mail using swaks and a new test account: swaks --tls --auth --to pabs3@bonedaddy.net --server smtp.openmoko.org Jan 08 20:41:57 so you say I should dropkick my local OS imstall? Jan 08 20:42:40 could you install swaks and try that? Jan 08 20:43:15 not that I'd consider it completely unlikely, given it's akonadi crap with a special half-akonadized kontact on top of it, that for sure has some issues. But when completely killing all processes and restarting them... Jan 08 20:43:28 can try, sure Jan 08 20:43:36 will take a few minutes Jan 08 20:43:54 hope swaks is available Jan 08 20:44:30 no dicwe Jan 08 20:44:36 dice even Jan 08 20:46:12 try mutt? Jan 08 20:52:37 DocScrutinizer05: just did a successful test with mutt Jan 08 20:57:28 on Debian you need mutt and libsasl2-modules installed, then this in .muttrc: https://paste.debian.net/75098/ Jan 08 21:01:12 sorry, phonecall Jan 08 21:01:36 rpm system here Jan 08 21:02:04 I could try thunderbird, eh? Jan 08 21:05:05 pabs3: DocScrutinizer05 is a noob. Jan 08 21:05:20 indeed Jan 08 21:05:21 :p Jan 08 21:05:32 and a noob who has NFC about his password Jan 08 21:06:21 :-S Jan 08 21:06:21 P@ssw0rd Jan 08 21:06:26 :) Jan 08 21:06:37 FFS! Jan 08 21:07:16 I honestly wish they wouldn't obfuscate passwords from user in config dialogs - what a completely idiotic thing Jan 08 21:07:40 usually there is a checkbox to show them? Jan 08 21:08:16 not in kontact Jan 08 21:08:26 >:-( Jan 08 21:09:46 aaaah the accounts of course have cryptic hash names in kwallet Jan 08 21:19:02 TB also has problems even with configuring openmoko.org, since it insists in checking the servers and also only offers "autodetect" for port25 (SMTP) Jan 08 21:19:49 same bte ahppens with kontact when I try "detect server capabilities" Jan 08 21:19:58 s/bte/btw/ Jan 08 21:19:59 DocScrutinizer05 meant: same btw ahppens with kontact when I try "detect server capabilities" Jan 08 21:20:15 s/bte ah/btw ha/ Jan 08 21:20:15 DocScrutinizer05 meant: same btw happens with kontact when I try "detect server capabilities" Jan 08 21:28:08 pabs3: anything in logs? Jan 08 21:29:13 I don't think anything shows up when you just do detect Jan 08 21:30:30 well, then why it freezes? Jan 08 21:31:04 at this point I have no idea Jan 08 21:33:42 hmm, I see in wireshark a couple of we-guess.mozilla.org Jan 08 21:38:17 http://wstaw.org/m/2014/01/08/plasma-desktopYB3389.png Jan 08 21:38:44 after I created two exceptions for expired certs for send and receive Jan 08 22:36:03 pabs3: could you give me the exact parameters for port number, authentication method and encryption etc used by >>swaks --tls --auth --to pabs3@bonedaddy.net --server smtp.openmoko.org<< Jan 08 22:37:36 all thunderbird activities during me setting up the account indicated pretty much that the config I used since 2009 is not the standard config Jan 08 22:38:42 DocScrutinizer05: https://paste.debian.net/plainh/6c36d820 Jan 08 22:39:04 looks good, thanks Jan 08 22:40:27 25, starttls, plain, that all looks exactly like the parameters I tried Jan 08 22:48:44 pabs3: i installed swaks for a random 64bit suse Jan 08 22:48:55 it doesn't segfault right away Jan 08 22:49:29 swaks --tls --auth --to pabs3@bonedaddy.net --server smtp.openmoko.org <--seems to miss a few bits, e.g details regarding my own account Jan 08 22:49:52 those are prompted for Jan 08 22:49:57 aah Jan 08 22:49:58 k Jan 08 22:50:04 will give it a try then Jan 08 22:52:45 UMMMMM Jan 08 22:52:47 ~> MAIL FROM: Jan 08 22:52:58 <~* 550-Verification failed for Jan 08 22:53:33 I don't think jr is your username? Jan 08 22:54:03 http://privatepaste.com/4306b17687 Jan 08 22:54:36 I gave my username "joerg2 when swaks asked for "username" Jan 08 22:54:45 jr@saturn:~> swaks --tls --auth --to pabs3@bonedaddy.net --server smtp.openmoko.org Jan 08 22:54:46 Username: joerg Jan 08 22:55:05 oh right, try --from joerg@openmoko.org Jan 08 22:55:14 ok Jan 08 22:55:41 I didn't get that since I was on a public server Jan 08 22:56:21 WTF?! worked Jan 08 22:57:01 now what's different between swaks on one hand, and kmail and thunderbird on the other hand? Jan 08 22:57:46 two are impossible to debug :) Jan 08 22:58:21 perhaps there is a way to dump debug info. with mutt you can get swaks like output with -d2 Jan 08 22:58:21 I'm just sttaing that both failed pretty much identically Jan 08 22:59:10 I rather will fire up wireshark once more, but probbaly not today, I'm wasted from this mess Jan 08 23:00:08 maybe my username needs to be joerg@openmoko now? nah, stupid guess Jan 08 23:01:17 I honestly can't see how kmail suddenly fails, thunderbird fails the same when using same age old credentials, and otoh swaks works from same machine with same credentials Jan 08 23:01:29 * pabs3 either Jan 08 23:01:45 only thing I can think of is they could be using different auth methods Jan 08 23:01:57 :nod: Jan 08 23:02:30 some imcompatibility between the auth/ssl whatever libs in tb and kmail, and swaks on the other hand Jan 08 23:03:30 I'm still pretty convinced it's related to the ssl upgrade on mail.o.o Jan 08 23:05:48 well, you'd think when I send same content to same destination via same account, from kmail, then I should be able to at least reasonably compare wireshark dumps Jan 08 23:06:03 particularly for packet size ;-P Jan 08 23:06:25 and packet sequence Jan 08 23:06:51 maybe not for packet content, when encrypted Jan 08 23:08:57 too bad swaks can't send arbitrary text ;-P Jan 08 23:11:03 ooh, for the record: http://privatepaste.com/c15361a97b Jan 08 23:47:32 DocScrutinizer05: do you have an SSH login? maybe try using a port forward: ssh -NL localhost:40025:localhost:25 hydra.openmoko.org Jan 08 23:47:57 err, good question, prolly not Jan 09 01:21:01 DocScrutinizer05: https://pavelmachek.livejournal.com/120188.html Jan 09 01:22:11 LOL Jan 09 01:22:34 I know it has a full ALU and 3 8bit vars Jan 09 01:23:00 but that seems t tiny bit small for calculating primes Jan 09 01:23:23 unless... they use the program memory to store variables there? Jan 09 01:24:44 zero idea :) Jan 09 01:24:48 I can see it calculating primes up to 2^8 Jan 09 01:25:13 funny Jan 09 01:27:04 the developer of the chip (it been designed by Nokia and just produced by NS - or even LXP?) told me he thinks I'm the first and only person besides him who really understood the power of that chip ;-) Jan 09 01:29:18 what this guy missed to mention: the chip also has an A/D to probe battery voltage and a built-in temperature sensor, both of which can modify the patterns you run Jan 09 01:37:57 pabs3, DocScrutinizer05: wow! Jan 09 01:38:33 DocScrutinizer05: so neo900 is going to have more of them, right? :) Jan 09 01:40:50 yeah, when I understand it correctly you can calculate primes on 9 engines, on Neo900 ;-P Jan 09 02:14:40 LOL, SSL just works where TLS gives me terrible headaches Jan 09 02:15:11 so... I call the mail issue fixed and it a day Jan 09 02:15:27 dman computers! Jan 09 02:15:35 stupid crap Jan 09 02:15:39 ;-P Jan 09 02:19:03 micro-netsplit? Jan 09 02:22:08 lol **** ENDING LOGGING AT Thu Jan 09 02:59:58 2014