Closed Bug 1251820 Opened 8 years ago Closed 8 years ago

Email will stop working on mozilladanmark.dk on 2016-04-27

Categories

(Participation Infrastructure :: MCWS, task)

task
Not set
major

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: bugzilla, Assigned: tanner)

References

Details

+++ This bug was initially created as a clone of Bug #1094973 +++

Over in Bug #1094973 the recommendation was to use Mandrill for sending email from our Mozilla hosted community website.

I just received an email from Mandrill telling that they will end their free service on the 27th of April.

How, how should we fix this? Will Mozilla pay the Mandrill account for mozilladanmark.dk, or do you have other options you recommend now?
We're in the process of finishing up our new infrastructure, so if you move there then we'll set you up with SES during the migration.
Interesting. When will that happen? Where can I get more info?
Time is ticking here. Any progress?
Flags: needinfo?(tanner.sumo.bugs)
What email address will you be sending from?
Flags: needinfo?(tanner.sumo.bugs) → needinfo?(bugzilla)
Our phpBB is currently set up to use kontakt@mozilladanmark.dk as From and Reply-To and use robot@mozilladanmark.dk as Return-Path and Sender.
Flags: needinfo?(bugzilla)
A verification email has been sent to kontakt@. Please click the link to confirm, and then add the following DNS records:


TXT:
    Name: _amazonses.mozilladanmark.dk 
        Value: 7Otqt0xNgA5hGEseMJ9cZ84Z+cn+uAFtX9GqybFmJ9I=
    Name: mozilladanmark.dk
        Value: amazonses:7Otqt0xNgA5hGEseMJ9cZ84Z+cn+uAFtX9GqybFmJ9I=

CNAME: 
    Name: n5eue3bbdx6zlyvk3oqyom5rt7ud6ips._domainkey.mozilladanmark.dk 
        Value: n5eue3bbdx6zlyvk3oqyom5rt7ud6ips.dkim.amazonses.com
    Name:zgngbqeqs22qe6eyeun5nj3fmj6tnfy7._domainkey.mozilladanmark.dk
        Value:"zgngbqeqs22qe6eyeun5nj3fmj6tnfy7.dkim.amazonses.com
    Name:yqzwk5qq6ca2sqvfz3vvapzw3k6etxys._domainkey.mozilladanmark.dk
        Value:yqzwk5qq6ca2sqvfz3vvapzw3k6etxys.dkim.amazonses.com"
Assignee: nobody → tanner.sumo.bugs
done
Do you have a gpg key? I have credentials for you, but they can't be sent plaintext.
Flags: needinfo?(bugzilla)
I apologize, I accidentally created the account in the wrong region. Can you please update the DNS records as follows:

"Domain verification record set:"
"Record name","Record type","Record Value"
"_amazonses.mozilladanmark.dk","TXT","lfpoeuZpBxD43zRV3CaBSOa+LP6biXUG7k3aTm5dLDw="

"Alternate domain verification record:"
"Record name","Record type","Record Value"
"mozilladanmark.dk","TXT","amazonses:lfpoeuZpBxD43zRV3CaBSOa+LP6biXUG7k3aTm5dLDw="


"DKIM record set:"
"Record name","Record type","Record Value"
"gnd4du6rm4dazoek227ehghcphupr7gy._domainkey.mozilladanmark.dk","CNAME","gnd4du6rm4dazoek227ehghcphupr7gy.dkim.amazonses.com"
"c45pvmwhxqe5o4uq2zuranjah42wkvdj._domainkey.mozilladanmark.dk","CNAME","c45pvmwhxqe5o4uq2zuranjah42wkvdj.dkim.amazonses.com"
"cd6nobd62gfobrfxo5g5u64c4yapcl3o._domainkey.mozilladanmark.dk","CNAME","cd6nobd62gfobrfxo5g5u64c4yapcl3o.dkim.amazonses.com"
Status: NEW → ASSIGNED
I updated the DNS.

I don't have a gpg key.
Flags: needinfo?(bugzilla)
Can you share the credentials in a file on google drive or something like that?
Flags: needinfo?(tanner.sumo.bugs)
I'd really rather not. If you don't want to set up a gpp key, you set up an account on https://protonmail.com/ I can send it to that so it's encrypted.
Flags: needinfo?(tanner.sumo.bugs)
(In reply to Tanner Filip [:tanner] from comment #12)
> I'd really rather not. If you don't want to set up a gpp key, you set up an
> account on https://protonmail.com/ I can send it to that so it's encrypted.

*you can, sorry
I set up Ynjyb3an@protonmail.com
Sent. You just need the smtp username and password, ignore the IAM username. 

Additional settings: 
Server Name: 	
email-smtp.us-east-1.amazonaws.com
Port: 	25, 465 or 587
Use Transport Layer Security (TLS): 	Yes
Got it, but it does not seem to work.

When I first set it up I got this error message:

<<<<<
Emailfejl
» EMAIL/SMTP
/posting.php

Løb ind i problemer med at sende email: Linie 1427. Svar: 530 Must issue a STARTTLS command first
.
Backtrace

Connecting to email-smtp.us-east-1.amazonaws.com:587
LINE: 1047 <- 220 email-smtp.amazonaws.com ESMTP SimpleEmailService-1383045763 oCQWgroJfFv16iXcjiPW

# EHLO plesk.mozilla-community.org
LINE: 1319 <- 250-email-smtp.amazonaws.com

LINE: 1319 <- 250-8BITMIME

LINE: 1319 <- 250-SIZE 10485760

LINE: 1319 <- 250-STARTTLS

LINE: 1319 <- 250-AUTH PLAIN LOGIN

LINE: 1319 <- 250 Ok

# AUTH PLAIN
LINE: 1427 <- 530 Must issue a STARTTLS command first 
>>>>>

So I searched a little and found this:
https://www.phpbb.com/community/viewtopic.php?f=64&t=527077

so I tried using "ssl://email-smtp.us-east-1.amazonaws.com" instead as server name, but that gave this error message:

<<<<<
Emailfejl
» EMAIL/SMTP
/posting.php

Kunne ikke forbinde til SMTP-vært : 0 :

Errno 2: fsockopen(): SSL operation failed with code 1. OpenSSL Error messages:
error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol at [ROOT]/includes/functions_messenger.php line 1030<br />
Errno 2: fsockopen(): Failed to enable crypto at [ROOT]/includes/functions_messenger.php line 1030<br />
Errno 2: fsockopen(): unable to connect to ssl://email-smtp.us-east-1.amazonaws.com:587 (Unknown error) at [ROOT]/includes/functions_messenger.php line 1030
>>>>>

so I tried using "tls://email-smtp.us-east-1.amazonaws.com" instead, which gave this error message:

<<<<<
Emailfejl
» EMAIL/SMTP
/posting.php

Kunne ikke forbinde til SMTP-vært : 0 :

Errno 2: fsockopen(): SSL operation failed with code 1. OpenSSL Error messages:
error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number at [ROOT]/includes/functions_messenger.php line 1030<br />
Errno 2: fsockopen(): Failed to enable crypto at [ROOT]/includes/functions_messenger.php line 1030<br />
Errno 2: fsockopen(): unable to connect to tls://email-smtp.us-east-1.amazonaws.com:587 (Unknown error) at [ROOT]/includes/functions_messenger.php line 1030
>>>>>

Can you see what is wrong?

I would guess something with OpenSSL, so here are some snippets for that:

openssl
OpenSSL support 	enabled
OpenSSL Library Version 	OpenSSL 1.0.1e-fips 11 Feb 2013
OpenSSL Header Version 	OpenSSL 1.0.1e-fips 11 Feb 2013
Flags: needinfo?(tanner.sumo.bugs)
I've updated OpenSSL, can you try now? If that doesn't work, try "smtps://"
Flags: needinfo?(tanner.sumo.bugs)
It appears I chose the wrong port number. I changed from 587 to 465 and now it works.
Status: ASSIGNED → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED

Bulk move of bugs

Component: Community IT: Hosting → MCWS
Product: Infrastructure & Operations → Participation Infrastructure
You need to log in before you can comment on or make changes to this bug.