On Mon, Oct 12, 2009 at 07:16:17PM +0200, Rene Bartsch wrote:
> > The usual suggestions apply. Scan the archives, but in a nutshell, avoid
> > forcing every legitimate client to make two tries all the time.
> >
> >> All OpenRelay-test-tools complained about the wrong hostname
> >
> > Overzealous pedantry.
> >
>
> So I have something in common with that tools ;)
Your choice of course, but SMTP clients don't require that the banner
match the name they used to connect to the server. In fact loop detection
is simplest if all "feeders" into the same queue use the same name.
> >> and TLS doesn't like wrong hostnames either.
> >
> > Can you elaborate on this? TLS looks at names in certificates, not
> > at banner names...
>
> I was under the impressesion that TLS-clients check the banner ->
> overzealous pedantry?
The impression is not (generally) correct. Perhaps someone, somewhere has
a TLS client that does this, but this client feature is poorly thought out.
IIRC MessageLabs used to have such a limitation in their TLS, and IIRC
were planning to eliminate this unwise limitation.
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majord...@postfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
