We're running OsTicket 1.17.3, as of this morning. From v1.9.16 up to v1.16.6 we've been collecting support emails using POP3 over SSL on port 995. This has worked perfectly. Upgrading to v1.17.3 has stopped this working.

The email server is Microsoft Exchange 2019. We've enabled POP3 and set it for TLS on authentication, port 110, or SSL session on 995. In order for this to work on OsTicket 1.17.3 we've had to drop the authentication to "Basic authentication (Plain text)" and unencrypted port 110. We'd really like to get the authentication encrypted again.

These settings are working just now:

If I ask for port 995 (for SSL), it fails:

We're running PHP 8.0.28, and OpenSSL is enabled:

POP3 logs at the Exchange server simply show OpenSession and CloseSession. Wireshark shows a TLS handshake completing, but then an encrypted alert which I can't see (because it's encrypted). If somebody can point me to a way to get the session key for the POP3 connections and park it in Wireshark so I can unlock the dialogue, that'd be helpful.

Anyway, I'm now at a point where my email authentication is insecure and I have no other ideas. Any help would be appreciated.

Thanks!

    mhay

    Simply says it can't connect. We can't really be of much help here. You need to check your logs for any reason for the connection to drop. Maybe firewall, blocked port, security rules, need to whitelist the ip of the server, maybe something is going on with the certificate, etc.

    Cheers.

      Write a Reply...