I build the 20141115 nigthly release and succeeded to enforce TLS over LMTP between Postfix and Dovecot. But, I see the following error in maillog after each incoming message :
Nov 17 14:12:20 lmtp(291): Info: Connect from xx.xx.xx.xx Nov 17 14:12:20 lmtp(x...@yyyyy.zzz): Info: bdlxGjT0aVQjAQAAd7W7Aw: msgid=<b8d97fa0-e0ac-412f-a182-52b6adf29...@xxxx.zz>: saved mail to INBOX Nov 17 14:12:20 lmtp(291): Info: Disconnect from xx.xx.xx.xx: Successful quit Nov 17 14:12:20 lmtp(291): Error: kevent(EV_DELETE, 12) failed: Bad file descriptor Le 17 nov. 2014 à 12:18, Stanislas SABATIER <s.sabat...@pobox.com> a écrit : > Thanks. I'll install latest release on my sandbox to test LMTPS with Postfix. > As soon as I tested, I'll report in this forum. > > Regards, > Stan. > Le 17 nov. 2014 à 11:46, Timo Sirainen <t...@iki.fi> a écrit : > >> It was implemented AFTER 2.2.15 release. Requires a recent hg version / >> recent nightly snapshot. See http://hg.dovecot.org/dovecot-2.2 or >> http://dovecot.org/nightly/ >> >> On 17 Nov 2014, at 02:38, Stanislas SABATIER <s.sabat...@pobox.com> wrote: >> >>> It did not work with 2.2.13 nor with 2.2.15 >>> >>> Le 17 nov. 2014 à 11:34, Timo Sirainen <t...@iki.fi> a écrit : >>> >>>> On 17 Nov 2014, at 02:27, Reindl Harald <h.rei...@thelounge.net> wrote: >>>> >>>>> Am 17.11.2014 um 11:24 schrieb Stanislas SABATIER: >>>>>> I setup a service in master.conf like this : >>>>>> >>>>>> dovecotsandbox unix - - n - 10 lmtp >>>>>> -o lmtp_send_xforward_command=yes >>>>>> -o lmtp_tls_security_level=encrypt >>>>>> >>>>>> Then I tried to add starttls option : >>>>>> -o lmtp_tls_note_starttls_offer=yes >>>>>> >>>>>> But Postfix still can't deliver the email. Postfix log : >>>>>> (…) status=deferred (TLS is required, but was not offered by host >>>>>> xx.xx.xx.xx[xx.xx.xx.xx]) >>>>> >>>>> that you should have included in your first post >>>>> as somebody else said: seems not to be supported now >>>>> >>>>> just setup a SSH tunnel and let postfix deliver to 127.0.0.1:port >>>> >>>> I thought the problem was with the new LMTP STARTTLS command that was >>>> added after v2.2.15 release. But if not, try the latest hg version and see >>>> if it works.
