The default bug view has changed. See this FAQ.

error retrieving POP3 mail from Ipswitch IMail servers when using some security products [Symantec, Norton, Computer Associates, CA, eTrust, antivirus]

RESOLVED INVALID

Status

MailNews Core
Networking: POP
--
major
RESOLVED INVALID
13 years ago
7 years ago

People

(Reporter: Ryan Briones, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [workaround comment 50])

Attachments

(4 attachments, 1 obsolete attachment)

(Reporter)

Description

13 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7) Gecko/20040803 Firefox/0.9.3
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7) Gecko/20040803 Firefox/0.9.3

I had Thunderbird 0.7.3 installed and working for quite some time. When 0.8 came
out, I wanted to try it, so I installed it. Of course, it picked up all my
settings, but when it checked my POP3 email account, I got this error message:

Sending of password did not succeed. Mail server mail.3oaks.com responded:

Nothing after "responded:". I thought it may be a corruption of by installing
0.8 without uninstalling 0.7.3, so I unisntalled both, retried, to no avail. So
then I uninstalled 0.8 and deleted the Thunderbird Store Directory, and
reinstalled. Same thing. Since I only have this email account, and to elinate
possiblities, I signed up for a free POP account. This worked. So I'm not sure
what to think. Maybe this server isn't complying to the standards? It worked
before, so hence my confusion.

Reproducible: Always
Steps to Reproduce:
1. Open Thunderbird
2. Press "Get Mail"

Actual Results:  
Alert dialog box saying "Sending of password did not succeed. Mail server
mail.3oaks.com responded:" with an "OK" box.

Expected Results:  
checked my POP mail account
(Reporter)

Comment 1

13 years ago
Created attachment 159108 [details]
Debug Log File

Ran this at the Windows 2000 command prompt to produce this output:

C:\>set NSPR_LOG_MODULES=POP3:4
C:\>set NSPR_LOG_FILE=thunderbird.txt
C:\>"C:\Program Files\Mozilla Thunderbird\thunderbird.exe"

Comment 2

13 years ago
I am seeing the same error message with my home ISP. Tbird 0.7.3 worked normally
on this ISP.  I have uninstalled it, deleted the directory, installed Tbird 0.8,
and recreated the profile.  When I telnet to the pop server on port 110, I get
this: "+OK X1 NT-POP3 Server nctv.com (IMail 8.13 1204560-5)"  The server at
work which does work is: ".... POP3 service (Netscape Messaging Server 4.15
Patch 7 (built Apr 29 2002)) ...."
(Reporter)

Comment 3

13 years ago
Some creativity has led me to believe that the patch in this bugfix #256294 is
what causes this bug. As I know little to nothing about C++, I downloaded and
installed the nightly build the night before the bugfix, which works. Then I
downloaded the nightly build the day after the bugfix, and my bug is reproduced.

Comment 4

13 years ago
yes, I think that's right - there's a problem with the IMAIL server, as I
understand it. I believe this is a dup of a bug Christian has fixed.
(Reporter)

Comment 5

13 years ago
(In reply to comment #4)
> yes, I think that's right - there's a problem with the IMAIL server, as I
> understand it. I believe this is a dup of a bug Christian has fixed.

Well if it is, it's not committed as of the 20040921 nightly build that i
downloaded from
http://ftp34.newaol.com/pub/mozilla.org/thunderbird/nightly/latest-0.8/ThunderbirdSetup.exe.
Thank you for following up.

Comment 6

13 years ago
correct, it's not checked in yet. I'm not even sure it's the same bug, though it
sure looks similar. I'm checking the fix in today...for bug 258077

Comment 7

13 years ago
(In reply to comment #4)
> yes, I think that's right - there's a problem with the IMAIL server, as I
> understand it. I believe this is a dup of a bug Christian has fixed.

It's a little bit strange.

SEND: AUTH PLAIN
RECV: + VXNlcm5hbWU6
Logging suppressed for this command (it probably contained authentication
information)
RECV: 
SEND: AUTH LOGIN

The server is the same and it has the same problem, but TB reacts different.
In response to sending our PLAIN authentication it seems we get an empty
response and treat it as error (empty -> no "+" -> error).
And really, IMail server additionally has the problem that it sends two CRLF as
line endings, that are effectively two lines where one is expected -> bug 234421.

BUT a) a fix has been checked in for that proplem and b) in bug 258077 Robby
also uses TB and gets a different log (as I do with current Mozilla and TB 0.8).

In any case, someone should check if the patch in bug 234421 went into TB
codebase. And Ryan please try again with the next nightly.
(Reporter)

Comment 8

13 years ago
(In reply to comment #7) 
> In any case, someone should check if the patch in bug 234421 went into TB
> codebase. And Ryan please try again with the next nightly.

I downloaded the nightly from 2004-09-22-04-0.8 folder, the 2004-09-22-08-trunk
folder, and the latest-0.8 folder. The 2004-09-22-04-0.8 and the latest-0.8, the
installer is broke. When installing I get "Error occurred during installation -
English (US) Language Pack: -229 SCRIPT_ERROR" and then the installer hangs
indefinitely. The 2004-09-22-08-trunk still errors, but twice now. The first is
the error in my original comment, and then "Sending of password did not succeed.
Mail server mail.3oaks.com responded: USER". If you need me to generate logs,
I'd be happy to.

Comment 9

13 years ago
(In reply to comment #8)

> The 2004-09-22-08-trunk still errors, but twice now. The first is the error in
> my original comment, and then "Sending of password did not succeed. Mail server
> mail.3oaks.com responded: USER".

That's very strange. With that build the communication with mail.3oaks.com works
like it should here (besides my password is wrong since I don't have an account).

Another log with that build would be nice, yes. But I fear it again shows that
TB sees and misinterprets the empty line and I can't say why.
The only idea is, that some other software on your system caches the empty line
and delivers it after I cleared the receive buffer. Do you have any antivirus or
firewall software on your computer?

(Reporter)

Comment 10

13 years ago
(In reply to comment #9)
> (In reply to comment #8)
> The only idea is, that some other software on your system caches the empty line
> and delivers it after I cleared the receive buffer. Do you have any antivirus or
> firewall software on your computer?

Yup. Norton AntiVirus 2003. I downloaded the zip version of the
2004-09-22-04-0.8 build, and turned off NAV2003 Email scanning, and badda-bing,
it worked. I created a log file with me using TB with NAV2003 Email scanning
turned on, I'll attached it. Sorry about my misdiagnosis.

(Reporter)

Comment 11

13 years ago
Created attachment 159747 [details]
TB Log with 20040921 fix and NAV2003 turned on

Comment 12

13 years ago
(In reply to comment #10)

> Yup. Norton AntiVirus 2003. I downloaded the zip version of the
> 2004-09-22-04-0.8 build, and turned off NAV2003 Email scanning, and badda-bing,
> it worked.

Ah, ok. This behaviour of NAV is new to me too, but AV's has caused much trouble
in the past so it's not really surprising.
I'm sorry I can't help that NAV makes the clear buffer-patch from bug 234421
useless.

Comment 13

13 years ago
Please add Mozilla 1.8 alpha 4 to the list of mail clients which are affected by
this problem.  Current environment includes Win XP Pro, Norton Systemworks 2004
including Norton Antivirus.  When I attempt to get mail, an alert is displayed
with: "Sending of password did not succeed. Mail server pop.nctv.com responded:
".  There was nothing in the message after the colon.  On another get mail, the
response does show USER, i.e., "Sending of password did not succeed. Mail server
pop.nctv.com responded: USER".  I have confirmed that when I turn off the virus
scanning on the inbound email, that I can get mail normally.  Please find a
solution which allows me to continue to scan for viruses in the email.  If you
need logs or other information, I will be glad to help.

Comment 14

13 years ago
(In reply to comment #13)
> I have confirmed that when I turn off the virus scanning on the inbound email,
> that I can get mail normally.  Please find a solution which allows me to
> continue to scan for viruses in the email.

This is very specific to IMail in conjunction with NAV, so I hesitate to
implement a workaround for this special case. It's not only because it's
special, but it's also because I don't know a really save way.

The only solution I can think of is to not handle responses in WaitForResponse()
!= '+' as error but only '-'. So if the response doesn't start with '+' or '-'
we could ignore it and pause for read again.
This would help here since the empty "response" is only a rest of a real
response and the server doesn't wait for an answer to it.

BUT if Mozilla/TB encounters an server out there that sends no "+" or "-" as
response, the connection will time out! Yes, the chance for such a server is
very little and it would be clearly a violation of RFC 1939. But that also
applies to the IMail server and users don't mind the reasons we fail.
Status: UNCONFIRMED → NEW
Ever confirmed: true
OS: Windows 2000 → All
Hardware: PC → All
Summary: error when checking POP3 mail using Thunderbird 0.8, maybe specific to Imail Mail Server → error when checking POP3 mail using Thunderbird 0.8 - specific to Imail Mail Server with NAV

Comment 15

13 years ago
Suggestion: Test for the mail server identification, if it is Imail, use the
workaround.  When I telnet to pop.nctv.com on port 110, it returns:

+OK X1 NT-POP3 Server nctv.com (IMail 8.12 498190-6)

Until this is fixed somehow, I cannot realistically use Thunderbird 0.8 or
Mozilla 1.8 alpha 4 or future versions as well.  Please help me on this.  Thanks.

Comment 16

13 years ago
I believe this has been fixed - have you tried a recent .8+ or 1.8a4+ build?

Comment 17

13 years ago
(In reply to comment #16)
> I believe this has been fixed

What? How this?

Comment 18

13 years ago
oh, I guess not - I thought it was the general IMAIL problem you fixed, but I
guess it's not...

Comment 19

13 years ago
(In reply to comment #18)
> oh, I guess not - I thought it was the general IMAIL problem you fixed, but I
> guess it's not...

Yes, it's not.
But maybe you can tell me what you think about risks I explained in comment #14.

Comment 20

13 years ago
I think you're right that the chance of a server not sending a '+' or '-' is
very low and it would be clearly a violation of RFC 1939. Would it make sense to
explicitly check for CRLF as well, and error out for everything else that's not
'+' or CRLF...?

Comment 21

13 years ago
(In reply to comment #20)
> Would it make sense to explicitly check for CRLF as well, and error out for
> everything else that's not '+' or CRLF...?

That's indeed another solution though it's even more specific to this server
(but therefore also more secure).
However not testing for CRLF but for
 *line == '\0' or PL_strlen(line) == 0
since ReadNextLine() doesn't return the line ending.

Comment 22

13 years ago
Im'm not sure if this is the same bug, but I also get a "password if incorrect"
with 2 pop-servers (thudnerbird 0.8). When I ssh into one of the 2 servers that
host the pop-service, I can login. (The password and loginname are the same for
my pop3-accounnt). Really, annoying bug I suppose. Hope this get fixed quick. In
the meantime I'll use thunderbird 0.7.3 ...

Comment 23

13 years ago
(In reply to comment #22)
> Im'm not sure if this is the same bug, but I also get a "password if incorrect"
> with 2 pop-servers (thudnerbird 0.8). When I ssh into one of the 2 servers that
> host the pop-service, I can login. (The password and loginname are the same for
> my pop3-accounnt).

You can quite easy find out if it's this bug.
Log on by hand (and telnet) and look if the server in the greeting indentifies
itself as "IMail". If it does, and you're using the official 0.8 it's at least
bug 258077 -> upgrade to a recent nightly.
If it's an IMail and you're using a recent nightly, it's likely it is this bug.

Comment 24

13 years ago
Another comment to the same problem (pop3-communication between thunderbird
Version 0.8 (20040926) and ipswitch Imail-Server 8.05)

Here's a excerpt of the client-server communication:

+OK X1 NT-POP3 Server mail.mabi.de (IMail 8.05 213625-2)

AUTH

-ERR authentication exchange failed

CAPA

+OK Capability list follows

TOP

USER

SASL LOGIN PLAIN

RESP-CODES

LOGIN-DELAY 120

PIPELINING

EXPIRE 30 USER

UIDL

IMPLEMENTATION Ipswitch_IMail_8.0

.

AUTH PLAIN

+ VXNlcm5hbWU6


/*

* Server should answer with +<CRLF> (RFC 2222 - Challenge with no data)

* Server should terminate his answer with a single <CRLF>
*/ 
AHRlc3QAdGVzdA==
+ UGFzc3dvcmQ6



STAT

+ UGFzc3dvcmQ6



QUIT

-ERR Invalid userid/password

The client should realize, that the authentication has failed, but thunderbird
tells me in his status line: no new messages on server ;-(

Comment 25

13 years ago
Christian,
You probably already know this, but I can confirm that this bug is NOT present
if Symantec's NAV is not used.  I backed out the prefs.js edit when you fixed <a
href="https://bugzilla.mozilla.org/show_bug.cgi?id=258077">258077</a>, so that's
not why it's working.  It appears that you are correct in this being unique to
(TB+NAV+IMail).
RW

Comment 26

13 years ago
Hi all,

I have exactly the same problem. It was working using TB 0.7.3, but all
following versions had this problem of POP3 authentification. The workaround is
to disactivate Symantec Antivirus. Thanks for fixing it.

Mathieu

Comment 27

13 years ago
I use TB 0.9 with an account on an imail-server and NAV2004,
I have exactly the same problem.

The workaround (disactivating Mailscans by Symantec Norton AntiVirus 2004)
works.  Mind that if a virus comes into your mailbox, it will put the inbox file
from your profile to the quarantain.  TB will lock, and after restarting TB it
will have created a new (empty) inbox file.  It looks like all your mail from
your inbox folder has gone missing, but when you put it back from quarantian
through NAV, you will find all you mail is there.  So you should not only stop
running mailscans by NAV2004, but also Auto-Protect.  Mind this will leave you
unprotected!

Hope this bug gets solved soon as I don't want to dissable my VirusScanner.
I will install NAV2005 soon and keep you posted!

Comment 28

13 years ago
I tested TB 1.0 and the same problem remains ;( I must stay on 0.7.3 version.

Comment 29

13 years ago
FWIW, I believe I'm also encountering this issue with Thunderbird 1.0 and CA
ezAntivirus:

client:
Thunderbird 1.0 (20041206)
CA ezAntivirus 7.0.0.33 (engine version 11.7.0)
ZoneAlarm 5.5.062.00
WinXP SP1

server:
IMail server is version 7.07

The IMail server connects through an ISafe POP3 Proxy.  Turning ezAV off
(snoozing it) allows the logon to work.  Turning secure authentication on for
the account also allows the logon to work.  I can attach a log file if you wish,
but it's pretty much identical the NAV case above, without the extra line-feeds.


Comment 30

13 years ago
(In reply to comment #29)

> I can attach a log file if you wish, but it's pretty much identical the
> NAV case above, without the extra line-feeds.

You mean the empty RECV: lines? If your log doesn't show them, I don't know why
it doesn't work for you since these lines are the problem.
So it could be interesting to attach your log here.

Comment 31

13 years ago
Created attachment 168434 [details]
TB 1.0 Log and CA ezAV 7.0 turned on

Log file for trying to log onto an IMail version 7.07 using Thunderbird 1.0
(20041206).  Computer Associates ezAntiVirus 7.0 enabled, along with ZoneAlarm
5.5.

Comment 32

13 years ago
BTW, thanks for all your (all the developers) great work on Thunderbird.  I've
been using it since about version 0.4 withour a hitch, until this issue and bug
258077.  Let me know if you need anymore info.

Comment 33

13 years ago
(In reply to comment #31)
> Log file for trying to log onto an IMail version 7.07 using Thunderbird 1.0
> (20041206).  Computer Associates ezAntiVirus 7.0 enabled, along with ZoneAlarm
> 5.5.  

But there are extra line-feeds. So it doesn't look different from the NAV logs.

Comment 34

13 years ago
(In reply to comment #33)
> (In reply to comment #31)
> > Log file for trying to log onto an IMail version 7.07 using Thunderbird 1.0
> > (20041206).  Computer Associates ezAntiVirus 7.0 enabled, along with ZoneAlarm
> > 5.5.  
> 
> But there are extra line-feeds. So it doesn't look different from the NAV logs.

I see that now after it's been posted.  They don't show up when viewing the file
in either notepad or wordpad.  Blame me for not looking at the log with a hex
editor.  Well, you have another test case anyways.

Comment 35

12 years ago
Created attachment 168858 [details]
Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server.

Comment 36

12 years ago
Hello all,

attachment 168858 [details] contains a _failed_ POP3 session to a mail server. This is a
socksified TBird 1.0 (released, Greek) here, but apart from that _no_ AV program
is running. This system is at work.

At home, where the same TBird is installed, I also have the same problem, on the
same mail server. Connection at home is direct (no SOCKS) and no Norton AV is
installed (or was ever installed). Avast AV Home is installed, version 4.5, but
even disabling it completely has the same result.

BTW, I can't tell if my server is an Imail one... Perhaps you can understand it
from my logs.

It is my impression that this issue, like another reporter noted may apply to:
- Specifical TB, NAV, Imail combinations
- Specifical TB, ezAntivirus, Imail combinations
- Specifical TB, ***no AV***, Imail (perhaps?) combination

Atm I'm using OE to pick mails from that problematic account (OE uses only
user/pass, so no problem there), and I do hope that this problem will be
resolved soon.

Will be attaching also a Tbird debug log for the same failed session.

Comment 37

12 years ago
Created attachment 168860 [details]
Socksified TB 1.0 log of failed access to POP server

Updated

12 years ago
Attachment #168858 - Attachment description: Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server → Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server. There are some CRLF combinations in this file, that can only be viewed by downloading the file first and viewing it from windows notepad

Comment 38

12 years ago
Comment on attachment 168858 [details]
Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server.

+OK POP3 server ready (7.0.028)
<C29473C729E340DAADE784165DE22777CC6658A7@fesscrpp2.XXXXXX.gr>

AUTH

+OK list of SASL extensions follows

CRAM-MD5
DIGEST-MD5
PLAIN
.

CAPA

+OK Capability list follows
TOP
RESP-CODES
USER
SASL CRAM-MD5 DIGEST-MD5 PLAIN
PIPELINING
UIDL
IMPLEMENTATION CPMS-7.0.028
AUTH-RESP-CODE
.

AUTH PLAIN

+ go ahead

XXXXXXXXXXXXXXXXXXXXXXXXX

-ERR [AUTH] invalid user or password
Attachment #168858 - Attachment description: Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server. There are some CRLF combinations in this file, that can only be viewed by downloading the file first and viewing it from windows notepad → Ethereal log of a socksified Tbird 1.0 with a failed connection to POP3 server.

Updated

12 years ago
Attachment #168858 - Attachment filename: tellaslog.txt
Attachment #168858 - Attachment is obsolete: true

Comment 39

12 years ago
(In reply to comment #36)
Just to keep anyone informed (I already mailed detailed infos to the reporter).
That problem isn't related to the "IMAIL with NAV" problem.
Logging in with the accounts credentials via using USER/PASS mechanism worked. 

Since the server answered with [AUTH] in that case, TB doesn't fall
back to USER/PASS itself. [AUTH] means it's no unspecified problem but
the server is certain that username and/or passwort is wrong. So
normally it's useless to try with other mechanisms. That this server
obviously uses this tag though everything is fine really can't be our fault.

So the plain mechanism of the server is broken. And since the secure mechanisms
CRAM-MD5 and APOP advertised by the server also don't work (veryfied with
another mail client, The Bat!), this server really is no good.

Comment 40

12 years ago
I have duplicated the same login error

1. "Sending of password did not succeed. Mail server x.x.x.x responded:" 
2. Click ok.
3. "Sending of password did not succeed. Mail server x.x.x.x responded: USER"
4. Click ok.

The environment is Windows XP sp2 with Thunderbird version 1.0 (20041206), Imail
8 on a Windows 2000 Server sp4, and Symantec Antivirus Corporate 9.0.1 (virus
definition dated 12/22/2004 rev 16). Thunderbird is using POP3. The error occurs
when Internet E-MAIL Auto-Protect option in Symantec is turned on (email virus
scanning). Turning that option off then corrects the issue.  

Comment 41

12 years ago
(In reply to comment #40)
Are there any plans for a fix for those who want the Internet E-MAIL
Auto-Protect option in Symantec to be turned on?  I have Norton scanning
incoming email, but not outgoing.

Comment 42

12 years ago
Same bug here in version 1.0.

Updated

12 years ago
Summary: error when checking POP3 mail using Thunderbird 0.8 - specific to Imail Mail Server with NAV → error when checking POP3 mail using TB 1.0 - specific to Imail Mail Server with NAV

Comment 43

12 years ago
Same thing happens with Zonelabs Security Suite 5.5

Comment 44

12 years ago
The same problem occurs with Computer Associates eTrust v6.4 and Thunderbird 0.9
and 1.0.  According to the report, Mozilla 1.7.5 works fine.

All this is according to a Mozillazine post which is here (with a log):
http://forums.mozillazine.org/viewtopic.php?p=1209019

Skip down to the first post by "hirochi"

Comment 45

12 years ago
Revise Summary for better searching, and to update with regard to new info.

was:  error when checking POP3 mail using TB 1.0 - specific to Imail Mail Server
with NAV

now:  error retrieving POP3 mail from Ipswitch IMail servers when using some
security products [Symantec, Norton, Computer Associates, CA, eTrust, antivirus]
Summary: error when checking POP3 mail using TB 1.0 - specific to Imail Mail Server with NAV → error retrieving POP3 mail from Ipswitch IMail servers when using some security products [Symantec, Norton, Computer Associates, CA, eTrust, antivirus]

Comment 46

12 years ago
I don't know if my ISP has this mail server, but it beheaves similary, however 
it just stop responding after it recieves the user/password with SASL instead 
of giving Invalid user. I figured out that a way to avoid is to send directly
AUTH PLAIN <base64 string>\n instead of AUTH PLAIN\n<base64 string>\n not 
using the CR in the middle. 

Comment 47

12 years ago
(In reply to comment #46)
> I don't know if my ISP has this mail server,

All IMail server I know send a greeting containing their name, e.g. "(IMail 8.14
289781-1)". Additionally when sending CAPA command they'll answer with a
"IMPLEMENTATION Ipswitch_IMail_8.0"
line.

> I figured out that a way to avoid is to send directly AUTH PLAIN <base64
> string>\n instead of AUTH PLAIN\n<base64 string>\n not using the CR in the
> middle. 

That's interesting since initial response is only standardized for SMTP, not for
POP. So it's just another sign that these guys have no good knowledge of the RFC's.

Comment 48

12 years ago
isn´t there an option to disable SASL login in thunderbird? Besides it does 
not work with some servers... IT IS USELESS!! it may have sense for MD5 or 
KERBEROS, but PLAIN is just base64. there is no security!. Is there an option 
hidden somewhere to avoid to get the sourcecode and modify it?

Comment 49

12 years ago
(In reply to comment #48)
> isn´t there an option to disable SASL login in thunderbird? Besides it does 
> not work with some servers... IT IS USELESS!! it may have sense for MD5 or 
> KERBEROS, but PLAIN is just base64. there is no security!. Is there an option 
> hidden somewhere to avoid to get the sourcecode and modify it?

Here's the hidden option for turning off all authentication attempts, from a
comment on https://bugzilla.mozilla.org/show_bug.cgi?id=258077 :

  user_pref("pop.mailserver.com?.auth_login", false);

where you replace '?' with the appropriate server number (the line it goes into
prefs.js of course).

BTW, if it has not already been made clear, this is a problem with Ipswitch
server's handling of AUTH PLAIN authentication procedure, and has NOTHING to do
with other programs running (such as firewalls or virus checkers). It exists as
of version 8.12 of IMail server.

Comment 50

12 years ago
(In reply to comment #49)
> (In reply to comment #48)
> > isn�t there an option to disable SASL login in thunderbird? Besides it does 
> > not work with some servers... IT IS USELESS!! it may have sense for MD5 or 
> > KERBEROS, but PLAIN is just base64. there is no security!. Is there an option 
> > hidden somewhere to avoid to get the sourcecode and modify it?
> 
> Here's the hidden option for turning off all authentication attempts, from a
> comment on https://bugzilla.mozilla.org/show_bug.cgi?id=258077 :
> 
>   user_pref("pop.mailserver.com?.auth_login", false);
> 
> where you replace '?' with the appropriate server number (the line it goes into
> prefs.js of course).

This is true, but the ? is a number, not an IP address of the server (just match
the number to the appropriate account in the prefs.js file

This DOES fix the problem, but the way.  This should be on the FAQ page, because
it's such a special case, but also so widespread!  I'm running NAV9.0.2
corporate, T-bird 1.0, and my POP server is IMail 6.06.  The trigger for this
issue was the NAV software upgrade from NAV 8.x to 9.0.  It's possible mail
scanning was disabled in 8.x, so not sure.

Thanks for leading me to this point!  If this "bug" isn't fixed, it would be
good to give the user the option in the server config GUI within Thunderbird to
disable server authentication, so we don't all have to paste lines into the
prefs.js, but just find the easy fix in the FAQ.

> 
> BTW, if it has not already been made clear, this is a problem with Ipswitch
> server's handling of AUTH PLAIN authentication procedure, and has NOTHING to do
> with other programs running (such as firewalls or virus checkers). It exists as
> of version 8.12 of IMail server.

No, my IMail server is 6.06 and still is affected same way as the rest.


*** Bug 284799 has been marked as a duplicate of this bug. ***

Comment 52

12 years ago
Alright. I was having the exact same problem internaly on our network. I'm running Symantec Enterprise AV 10.01 on our server and our clients. We use Imail,(I think 8.6...), on the same server and I was unable to retrieve mail with TB 1.0.7. When I went to make changes to the prefs.js file all I found was this:
# Mozilla User Preferences

/* Do not edit this file.
 *
 * If you make changes to this file while the browser is running,
 * the changes will be overwritten when the browser exits.
 *
 * To make a manual change to preferences, you can visit the URL about:config
 * For more information, see http://www.mozilla.org/unix/customizing.html#prefs
 */

So I went to http://aboutconfig.mozdev.org/ to download the about:config extension from http://aboutconfig.mozdev.org/installation.html 
Once I downloaded it to my desktop, I installed it by opening TB and going to Tools > Extensions > Install. Then I browsed to my desktop (where I had downloaded the extention) and selected aboutconfig-0.6.xpi
After that I restarted TB. I then selected Tools > about:config.
At this point something that will make your life easier is to click the word "status" at the top and sort the preferences. Now you want to find "mail.server.server?.name" the ? is variable, but will probably be 2 if you only have one mail account. If you have more than one, look at the string that is assigned to that entry and find the one that has the email address you are having trouble receiving mail on. Remember that number.
Now, right click inside the about:config window and select New > Boolean. For the name enter "mail.server.server?.auth_login" (once again the ? is the number we just looked up, it will probably be "2") and for the next window select "false".

Long solution, I know but it was the only way I could get it to work and I gave as much explaination as possible so that others less tech-savvy could use it. It seems to me this should be fixed soon as I've found many posts related to this problem. The same issue is in TB 1.5 RC3 so I know it's not fixed yet.
I would love that this gets some more attention so that I could deploy this in our corporate envirionment but as it is, this bug is a show-stopper. I personally will continue to use TB, but the users I support will not get it because this is far too much tweaking for each machine on our network.
I'm also experiencing this with an IMail POP Server over the Internet, making Thunderbird and SeaMonkey unable to login, when using some antivirus scanner.

My solution is to use some POP/IMAP Proxy such as Perdition, on the NAT box.
QA Contact: general

Updated

9 years ago
Assignee: mscott → nobody
anyone still see this problem (with local workarounds removed)?


(In reply to comment #21)
> (In reply to comment #20)
> > Would it make sense to explicitly check for CRLF as well, and error out for
> > everything else that's not '+' or CRLF...?
> 
> That's indeed another solution though it's even more specific to this server
> (but therefore also more secure).
> However not testing for CRLF but for
>  *line == '\0' or PL_strlen(line) == 0
> since ReadNextLine() doesn't return the line ending.
based on previous comments, this issue is not a Thunderbird bug, so => INVALID, unless bienvenu indicates it's something we should accommodate.

cite comment 50 as workaround.
note, bug 284799 has several duplicates to it.
Status: NEW → RESOLVED
Last Resolved: 7 years ago
Component: General → Networking: POP
Product: Thunderbird → MailNews Core
QA Contact: general → networking.pop
Resolution: --- → INVALID
Whiteboard: [workaround comment 50]
You need to log in before you can comment on or make changes to this bug.