On 2012-04-22 10:16, Jerry wrote:
System: FreeBSD 8.2-STABLE amd64
I just updated to "openssl-1.0.1" on my machine. The machine went
trough a complete reboot so I would assume that everything was started
correctly. I did rebuild Postfix after updating "openssl". I am using
the "postfix-current" port supplied by FreeBSD which currently reports:
Postfix (2.10-20120308) as the version in use.
Since the update, I have noticed these error messages in the "maillog"
...
I am assuming that this is because of the update to "openssl-1.0.1";
however, it does not happen with any other client. Has anyone else
experienced this problem or have a possible solution?
On other system, I have noticed that openssl-1.0.1 uses TLS1.2 by default
and that seemed to break a bunch of connections.
Try opening connections with different TLS versions and see which ones
break:
openssl s_client -connect server:25 -starttls smtp -tls1_2
openssl s_client -connect server:25 -starttls smtp -tls1_1
openssl s_client -connect server:25 -starttls smtp -tls1
openssl s_client -connect server:25 -starttls smtp -ssl3
--
Julien Vehent - http://1nw.eu/!j
