> On 18.07.2023 at 16:21 Benoit Panizzon wrote: > >> As far as I know Microsoft never officially supported or advertised STARTTLS >> for its mail submission services. Given that RFC8314 "Use of Transport Layer >> Security for Email Submission and Access" basically deprecates STARTTLS in >> favor of implicit TLS for submission services, I wouldn't expect that >> STARTTLS is coming back if it's currently broken. >> Maybe Michael Wise can shed some more light on this. > > They definitely advertise STARTTLS as a supported CAPABILITY, check > yourself:
By „advertised“ I was referring to the documentation, where STARTTLS support is not mentioned. Their IMAP service on the server is obviously broken, I just have low hopes for the mentioned reasons that STARTTLS support is going to be restored. > Weird... if somebody could point me to what I'm doing wrong... > > Our Postfix: > > Jul 18 08:04:53 asterix postfix/smtp[81902]: Untrusted TLS connection > established to hotmail-com.olc.protection.outlook.com[104.47.51.33]:25: > TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) > > Is very capable to STARTTLS with Microsoft... > > So trying again: > > $ openssl s_client -starttls smtp -connect > hotmail-com.olc.protection.outlook.com:25 > [cert validation stuff] > 250 SMTPUTF8 > ehlo example.com > rset > quit > > => Nothing! I think you’re mixing up MTA to MTA connections and email submission. If you want to deliver messages to hotmail.com for local recipients: hotmail-com.olc.protection.outlook.com:25 with optional STARTTLS If you want to submit emails from a MUA: smtp-mail.outlook.com:587 with mandatory STARTTLS If you want to fetch emails via IMAP: outlook.office365.com:993 with implicit TLS You cannot interchange those hostnames or ports. — BR Oliver ________________________________ dmTECH GmbH Am dm-Platz 1, 76227 Karlsruhe * Postfach 10 02 34, 76232 Karlsruhe Telefon 0721 5592-2500 Telefax 0721 5592-2777 dmt...@dm.de<mailto:dmt...@dm.de> * www.dmTECH.de<http://www.dmtech.de> GmbH: Sitz Karlsruhe, Registergericht Mannheim, HRB 104927 Geschäftsführer: Christoph Werner, Martin Dallmeier, Roman Melcher ________________________________ Datenschutzrechtliche Informationen Wenn Sie mit uns in Kontakt treten, beispielsweise wenn Sie an unser ServiceCenter Fragen haben, bei uns einkaufen oder unser dialogicum in Karlsruhe besuchen, mit uns in einer geschäftlichen Verbindung stehen oder sich bei uns bewerben, verarbeiten wir personenbezogene Daten. Informationen unter anderem zu den konkreten Datenverarbeitungen, Löschfristen, Ihren Rechten sowie die Kontaktdaten unserer Datenschutzbeauftragten finden Sie hier<https://www.dm.de/datenschutzerklaerung-kommunikation-mit-externen-493832>. _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
