Ubuntu
evolution package

Support TLS (not just SSLv3)

Bug #1383409 reported by Ian Young
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
evolution (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Starting recently, I've been receiving this message when I try to connect to my (previously working) mail account: 'The reported error was "Could not connect to 'mail.messagingengine.com:143': TCP connection reset by peer".'

Due to the timing, I suspect that this is occurring because my mail provider (Fastmail) disabled SSLv3 support due to the POODLE vulnerability. I also found this thread (https://bugzilla.redhat.com/show_bug.cgi?id=1153052) concerning the same issue from Red Hat, so it seems a fix exists but needs to be released in the Ubuntu packages. This is a fairly serious problem, as I am now unable to acccess my mail from Evolution (and if I was able to access it, I would be doing so via a dangerously broken protocol).

Ubuntu 14.04
Evolution 3.10.4-0ubuntu2

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in evolution (Ubuntu):
status: New → Confirmed
Revision history for this message
David Piggott (dhpiggott) wrote :

I have the same problem and I also know it to be because Dovecot on my mail server (I run it myself using mailinabox) now has SSL disabled in response to POODLEBLEED.

The error I get is different - though I'm guessing it's just because I'm not using STARTTLS:
The reported error was "Could not connect to 'elm.dhpiggott.net:993': Cannot communicate securely with peer: no common encryption algorithm(s).".

I'm running Ubuntu 14.04 and Evolution 3.10.4-0ubuntu2.

Revision history for this message
David Piggott (dhpiggott) wrote :

Oops, sorry all, I only just now realised that this is a duplicate of #1382133.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.