'unknown CA' after domain problems had been fixed (by my hoster)

Help
1

Domain: acegames.de
OS: Debain8 on Linux Vserver
Hoster: Kramer Betriebs GmbH
Web-Server: apache2
ControlPanel: no
SSH: Yes
Working Mailserver: yes ( Postfix+dovecot)
How: Using Ajax Request in php to make file mail_send.php send an email via swiftmailer with tls encryption

SysLog:

SL3 alert read:fatal:unknown CA
SSL_accept:failed in unknown state
SSL_accept error from 553182-561.pph-server.de[137.74.140.78]: 0
warning: TLS library problem: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1300:SSL alert number 48:
lost connection after STARTTLS from 553182-561.pph-server.de[137.74.140.78]
disconnect from 553182-561.pph-server.de[137.74.140.78]

problem remains after deleting certificate and related files, recreating

mail_send.php?err=ERRORMESSAGE&time=00-00&user= UNKNOWN:

require_once 'swiftmailer/lib/swift_required.php';

$error = $_GET['err'];
$time = $_GET['time'];
$user = $_GET['user'];

// Create the mail transport configuration
$transport = Swift_SmtpTransport::newInstance('acegames.de', 587, 'tls');
$transport->setUsername("@acegames.de");
$transport->setPassword("");

$mailer = Swift_Mailer::newInstance($transport);

$message = Swift_Message::newInstance('Teamspeak Error Report');
$message->setFrom(array('admin@acegames.de' => 'Admin'));
$message->setTo(array('report@acegames.de' => 'ts3 report'));
$message->setBody(
'' .
' ' .
' ' .
'

Reported Error: ' . $error . '

' .
'

Time: ' . $time . '

' .
'

User: ' . $user . '

' .
' ' .
'',
'text/html'
);
// Send the email
$mailer->send($message);

In my Webbrowser's (Chrome) console i get this:

GET https://ts.acegames.de/mail_send.php?err=undefined&time=undefined&user=undefined 500 (Internal Server Error)

it's not interesting thet undefined means that there is no value. The fact that it's outputting a 500-Internal-Server-Error is interesting by i dont get where the problem is.

2

btw. i could not connect to my webserver either (it took about a day. then everything looked fine again)
because of the same cert error as in the syslog.
But no 500 error.
Seems like the file caused the 500-error because of the certificate error.

3

This looks like a misconfiguration in your mail server. This isn't an apache error ( the cert is correct there), rather a mail error.

When I test I get;

Unable to open a socket to 137.74.140.78:587. Fatal error: Can't connect to "137.74.140.78:587"

Is there a firewall on your server blocking access to port 587 ? and is postfix running on your server ? any errors in the log for the mail server ?

4

/var/log/mail.log:

Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: SSL3 alert read:fatal:unknown CA
Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: SSL_accept:failed in unknown state
Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: SSL_accept error from 553182-561.pph-server.de[137.74.140.78]: 0
Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: warning: TLS library problem: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1300:SSL alert number 48:
Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: lost connection after STARTTLS from 553182-561.pphserver.de[137.74.140.78]
Dec 19 20:41:12 553182-561 postfix/smtpd[32750]: disconnect from 553182-561.pph-server.de[137.74.140.78]

ive just asked my hoster if there is any firewall blocking the port. waiting for an answer...zb

5

ive just realised that im not using STARTTLS so port is 465 but now i get ERR_CONNECTION_REFUSED on my whole apache2 server (acegames.de and its subdomains)

apache crashed. it had already crashed yesterday at 9:39 PM. but i was unable to find the error messages yesterday. so apache crashed because it could not find the certificate defined in the vhost files.researching…

6

i cannot find any error, relating to the 500-INTERNAL_SERVER_ERROR…

btw apache is now running with perfectly fine cert settings.

7

OK, now you have fixed those things, I can also connect correctly to port 587.

Are you still getting the 500 error ?

8

yes… it is still a 500-INTERNAL_SERVER_ERROR if, open up the site:
https://ts.acegames.de/mail_send.php?err=error&time=00-00&user=username

9

What is there in your apache log ? (and error log)

10

/var/log/apache2/error.log:

[Tue Dec 20 21:04:51.944729 2016] [:error] [pid 9649] [client 17.142.142.189:45438] PHP Fatal error: Uncaught exception 'Swift_TransportException' with message 'Connection to tcp://acegames.de:465 Timed Out' in /var/www/html/ts/swiftmailer/lib/classes/Swift/Transport/AbstractSmtpTransport.php:404\nStack trace:\n#0 /var/www/html/ts/swiftmailer/lib/classes/Swift/Transport/AbstractSmtpTransport.php(289): Swift_Transport_AbstractSmtpTransport->_getFullResponse(0)\n#1 /var/www/html/ts/swiftmailer/lib/classes/Swift/Transport/AbstractSmtpTransport.php(117): Swift_Transport_AbstractSmtpTransport->_readGreeting()\n#2 /var/www/html/ts/swiftmailer/lib/classes/Swift/Mailer.php(79): Swift_Transport_AbstractSmtpTransport->start()\n#3 /var/www/html/ts/mail_send.php(36): Swift_Mailer->send(Object(Swift_Message))\n#4 {main}\n thrown in /var/www/html/ts/swiftmailer/lib/classes/Swift/Transport/AbstractSmtpTransport.php on line 404

just found out about this error

others following...

11

Dec 20 07:06:28 553182-561 dovecot: imap-login: Login: user=admin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5490, TLS, session=<46kk1hBEPgC8riHH>
Dec 20 07:06:31 553182-561 dovecot: imap-login: Login: user=support@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5495, TLS, session=
Dec 20 07:06:31 553182-561 dovecot: imap-login: Login: user=hoster@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5496, TLS, session=
Dec 20 07:06:31 553182-561 dovecot: imap-login: Login: user=wiki@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5497, TLS, session=
Dec 20 07:06:32 553182-561 dovecot: imap-login: Login: user=cloud@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5498, TLS, session=
Dec 20 07:06:34 553182-561 dovecot: imap(hoster@acegames.de): Connection closed in=1042 out=3714
Dec 20 07:06:34 553182-561 dovecot: imap(cloud@acegames.de): Connection closed in=1042 out=3708
Dec 20 07:06:35 553182-561 dovecot: imap(wiki@acegames.de): Connection closed in=1050 out=8443
Dec 20 07:06:35 553182-561 dovecot: imap(support@acegames.de): Connection closed in=1091 out=8574
Dec 20 07:06:41 553182-561 dovecot: imap-login: Login: user=ts3status@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5500, TLS, session=
Dec 20 07:06:42 553182-561 dovecot: imap(ts3status@acegames.de): Connection closed in=624 out=2141
Dec 20 07:06:44 553182-561 dovecot: imap-login: Login: user=admin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5502, TLS, session=
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=info@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5510, TLS, session=
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=report@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5511, TLS, session=
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=superadmin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5512, TLS, session=<82A61xBEwAC8riHH>
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=luke@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5513, TLS, session=<2Zs61xBEXQC8riHH>
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=noreply@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5514, TLS, session=
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=accounts@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5515, TLS, session=<+tA61xBEmwC8riHH>
Dec 20 07:06:45 553182-561 dovecot: imap-login: Login: user=trash@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, mpid=5516, TLS, session=
Dec 20 07:06:47 553182-561 dovecot: imap(luke@acegames.de): Connection closed in=624 out=2136
Dec 20 07:06:47 553182-561 dovecot: imap(accounts@acegames.de): Connection closed in=1042 out=3707
Dec 20 07:06:48 553182-561 dovecot: imap(report@acegames.de): Connection closed in=1148 out=6982
Dec 20 07:06:48 553182-561 dovecot: imap(noreply@acegames.de): Connection closed in=1467 out=5146
Dec 20 07:06:49 553182-561 dovecot: imap(trash@acegames.de): Connection closed in=1871 out=7265
Dec 20 07:06:50 553182-561 dovecot: imap(info@acegames.de): Connection closed in=1879 out=28046
Dec 20 07:06:50 553182-561 dovecot: imap(superadmin@acegames.de): Connection closed in=1934 out=19705
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=admin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=superadmin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=support@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<84GP1BBEqAC8riHH>
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=report@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=trash@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=hoster@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<45GQ1BBExwC8riHH>
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 59 secs): user=cloud@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 59 secs): user=wiki@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:06:59 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 59 secs): user=info@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<80uS1BBEqwC8riHH>
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=wiki@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=info@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=cloud@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 60 secs): user=hoster@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<6Re62xBEmwC8riHH>
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 61 secs): user=trash@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 61 secs): user=report@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 61 secs): user=superadmin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<15e22xBESQC8riHH>
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 61 secs): user=support@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=
Dec 20 07:09:00 553182-561 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 61 secs): user=admin@acegames.de, method=PLAIN, rip=188.174.33.199, lip=137.74.140.78, TLS: Disconnected, session=<1Ray2xBEGwC8riHH>

and i do get this sh*t spammed into my logs:
(so currently my syslog of only today since 5 AM is over 7 Megabites of data.)

Dec 20 05:55:37 553182-561 postfix/smtpd[5072]: connect from unknown[80.82.77.83]
Dec 20 05:55:42 553182-561 postfix/smtpd[5072]: warning: unknown[80.82.77.83]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 20 05:55:42 553182-561 postfix/smtpd[5072]: disconnect from unknown[80.82.77.83]

Dec 20 05:58:39 553182-561 postfix/smtpd[5099]: initializing the server-side TLS engine
Dec 20 05:58:39 553182-561 postfix/smtpd[5099]: warning: hostname vps863.hidehost.net does not resolve to address 91.200.12.140: Name or service not known
Dec 20 05:58:39 553182-561 postfix/smtpd[5099]: connect from unknown[91.200.12.140]
Dec 20 05:58:44 553182-561 postfix/smtpd[5099]: warning: unknown[91.200.12.140]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 20 05:58:44 553182-561 postfix/smtpd[5099]: lost connection after AUTH from unknown[91.200.12.140]
Dec 20 05:58:44 553182-561 postfix/smtpd[5099]: disconnect from unknown[91.200.12.140]

hostname rno-dsl1a-100.gbis.net does not resolve to address 216.82.142.100

12

i’ve just retryed to find something in the logs but i cannot find anything.

200 lines sht
1-5 lines log
200 lines sht
…unable to find anything till i can open the log file and read without deleting hundreds of lines so that i can understand the log entrys.

13

mail.log (19-21 December)
https://download.acegames.de/mail.log

syslog (21 December)
https://download.acegames.de/syslog.log

14

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.