A tcpdump between smtp and smtpd shows a TCP handshake but no payload at
all.
That looks like the remote SMTP server wants to use TLS wrappermode,
but your Postfix SMTP client wants to use STARTTLS.
Ok, that was really dumb. Not seeing a banner should have given me a
clue that I broke the remote smtpd. Indeed now I see a message on the
tlsrpt socket indicating "starttls-not-supported".
I also just noticed the limitations described in the TLSRPT_README,
which "non DNSSEC destination" seems to be one of.
It does not report failure to connect, or connections that break
before or after a TLS handshake
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
