I am into final tuning of my mail server, and I greatly appreciate all
the help I have received from the many lists I have had to go to for
help. I am now at actual external testing, starting out with some free
mail test servers. Right now I am trying out:
http://www.emailsecuritygrader.com
And from there I became aware that I probably don't have SMTPS (port
465) configured properly. Actually at first I did not even have it set
up! So I reread the readme:
http://www.postfix.org/TLS_README.html
And add:
/etc/postfix/main.cf
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_scache
/etc/postfix/master.cf:
smtps inet n - n - - smtpd
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
and restarted postfix
And tried to telnet into localhost 465. All I get is:
telnet test1.test.htt-consult.com 465
Trying 208.83.67.180...
Connected to test1.test.htt-consult.com.
Escape character is '^]'.
The one pointer I have found so far on telneting into 465 shows that I
should have also gotten a:
220 ________ ESMTP Postfix
sending a 'ehlo' results in the connection closing.
Other smtpd main.cf options previously set are:
smtpd_use_tls = yes
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_tls_key_file = /etc/pki/tls/private/test1.test.htt-consult.com.key
smtpd_tls_cert_file = /etc/pki/tls/certs/test1.test.htt-consult.com.crt
Thank you for any assistance.
