Hi folks, I am trying to install brand new instance of RT 4.4.4 on the fresh Debian 10 machine with fresh configuration of everything. And unfortunatelly can not pass the mails through rt-mailgate. It produces the following error:
/opt/rt4/bin/rt-mailgate --queue support --action correspond --url http://localhost --debug < ./mail-test.txt /opt/rt4/bin/rt-mailgate: temp file is '/tmp/yxST9F197x/fxjPiqZvg4' /opt/rt4/bin/rt-mailgate: connecting to http://localhost/REST/1.0/NoAuth/mail-gateway HTTP request failed: 500 Can't connect to localhost:443 (SSL connect attempt failed error:1408F10B:SSL routines:ssl3_get_record:wrong version number). Your webserver logs may have more information or there may be a network problem. /opt/rt4/bin/rt-mailgate: undefined server error
Everything targeting the :80 port is redirected in apache to https port so that’s why the SSL complaint. The certificates of the server and authorities are maintained by certbot (Lets Encrypt authority) and normal RT GUI browsing through web browser goes well. When I try to access https://rt.mydomain.cz/REST/1.0/NoAuth/mail-gateway it produces output:
not ok - Couldn't parse or find sender's address
So I can see no problem with SSL when accessing the site from web but only from the localhost. Apache and RT logs shows only a line
myRTserver.cz:80 ::1 - - [17/Feb/2020:19:38:36 +0100] "\x16\x03\x01\x02" 400 0 "-" "-"
It’s a shared IP address with other webservers so I suspect SNI to be a trouble because of this thread. My system behaves the same as described. Although I don’t know why it complains for localhost call.
Have anybody solved the similar problem? How to disable the SNI for IO::Socket::SSL globally?
Thank you, Petr