* Axel Braun <axel.br...@gmx.de>: > I have set up a mailserver for our company on openSUSE 11.4, TLS enabled > with self-signed certificates. server maintenance is done via ISPConfig. > > smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/mysql- > virtual_sender.cf > smtpd_client_restrictions = check_client_access mysql:/etc/postfix/mysql- > virtual_client.cf > smtpd_helo_required = no > smtpd_helo_restrictions = > strict_rfc821_envelopes = no > smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, > check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, > reject_unauth_destination > smtp_sasl_auth_enable = no > smtpd_sasl_auth_enable = yes > smtpd_use_tls = yes > smtp_use_tls = no > smtp_enforce_tls = no > smtpd_tls_key_file = /etc/postfix/certs/smtpd.key > smtpd_tls_cert_file = /etc/postfix/certs/smtpd.crt > smtpd_tls_CAfile = /etc/postfix/certs/cacert.pem > > SMTP configuration in KMail (KDE mail client), the check of the mailserver's > capabilities gives 'TLS is enabled on port 25, but not SSL'. Anyway, sending > mail with TLS works *from this client*. > Sending with Thunderbird, Apple mail or iOS does not work encrypted at all! > > Telnet check looks OK to me: > > userl@z60m:~> telnet mail.mydomain.de 25 > Trying 999.999.999.999... > Connected to mail.mydomain.de. > Escape character is '^]'. > 220 loftxxxx.myprovider.de ESMTP Postfix > STARTTLS > 220 2.0.0 Ready to start TLS > > What is the problem? How can I enable SSL additionally?
p@p:~$ grep smtps /etc/services ssmtp 465/tcp smtps # SMTP over SSL -- All technical questions asked privately will be automatically answered on the list and archived for public access unless privacy is explicitely required and justified. saslfinger (debugging SMTP AUTH): <http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>
