Mac Mail Cannot Connect

alinford

Well-Known Member
Nov 4, 2006
62
10
158
I am unable to setup and connect email with Mac Mail. I can telnet from the machine and login to webmail. I have tried both with and without SSL, but it will not connect. It was working until the most recent updates to 84.08 and 84.09.
 

alinford

Well-Known Member
Nov 4, 2006
62
10
158
Lots of these, since I have tried dozens of times:
2019-11-18 11:07:06 SMTP connection from [IPREMOVED]:51128 (TCP/IP connection count = 97)
2019-11-18 11:08:07 SMTP connection from IPREMOVED.tukw.qwest.net [IPREMOVED]:51128 lost D=1m
 

alinford

Well-Known Member
Nov 4, 2006
62
10
158
We have tried using every form of the login info, both SSL and non SSL, including allow insecure login.

Both IP's that show up are whitelisted.

This is the other log entry:
2019-11-18 12:00:13 dovecot_login authenticator failed for c-IPREMOVED.hsd1.wa.comcast.net ([<INTERNALIPREMOVED>]) [IPREMOVED]:62140: 535 Incorrect authentication data (set_id=[email protected])
2019-11-18 12:00:23 dovecot_login authenticator failed for c-IPREMOVED.hsd1.wa.comcast.net ([<INTERNALIPREMOVED]) [IPREMOVED]:62140: 535 Incorrect authentication data (set_id=[email protected])
 
Last edited by a moderator:

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,274
1,291
313
Houston
We have tried using every form of the login info, both SSL and non SSL, including allow insecure login.

Both IP's that show up are whitelisted.

This is the other log entry:
2019-11-18 12:00:13 dovecot_login authenticator failed for c-IPREMOVED.hsd1.wa.comcast.net ([<INTERNALIPREMOVED>]) [IPREMOVED]:62140: 535 Incorrect authentication data (set_id=[email protected])
2019-11-18 12:00:23 dovecot_login authenticator failed for c-IPREMOVED.hsd1.wa.comcast.net ([<INTERNALIPREMOVED]) [IPREMOVED]:62140: 535 Incorrect authentication data (set_id=[email protected])
This would indicate that the password is incorrect...have you confirmed the password has not updated and the IP the request is originating from is not blocked with cPHulk?
 

alinford

Well-Known Member
Nov 4, 2006
62
10
158
Yes, I am able to login to webmail with that password, from that device. The IP's are not blocked, and are whitelisted in cPHulk. I also tried changing passwords, but the results were the same.
 

Cameron Worts

Member
Apr 22, 2015
16
5
53
Australia
cPanel Access Level
Root Administrator
This has been an ongoing issue with Mac Mail and cPanel. The issue is to do with the SSL/TLS Cipher Suit List.

I went to a mac store, showed them the issue and they blamed cPanel. cPanel is blaming Mac.

A Workaround:

in WHM go to Exim Configuration Manager,

Options for OpenSSL:
+no_sslv2 +no_sslv3

SSL/TLS Cipher Suite List:
ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS


Save it, go to 'Mailserver Configuration' and under SSL Cipher List:

ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS
 

alinford

Well-Known Member
Nov 4, 2006
62
10
158
Cameron, Do I add this to what is currently there, or do I replace what is there?
Here is what I currently have:

Exim Configuration Manager / Options for OpenSSL:
+no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1

Exim Configuration Manager / SSL/TLS Cipher Suite List:
ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256


Mailserver Configuration / SSL Cipher List:
ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
 

Mat-d-rat

Well-Known Member
Jul 30, 2003
108
2
168
I'm sure I used this a while ago... but now it's started to happen again, cannot get Mac mail to connect (bu Office mail works fine!). Any other ideas?
 

keat63

Well-Known Member
Nov 20, 2014
1,961
266
113
cPanel Access Level
Root Administrator
I experienced something similar when I migrated my server recently.

I had a remote user, using a macbook who couldn't authenticate.
I spent hours checking and double-checking passwords, port number, ssl/tls setting etc.

In exim config manager, under the security tab, try these custom settings, but make sure you copy your current settings first.

+no_sslv2 +no_sslv3

ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS