On Sun, Dec 07, 2014 at 10:56:17PM -0700, Steffan A. Cline wrote:
> Looking earlier on the thread, Jan suggested that it was dovecot that had
> the issue and may be related.
>
> My issue seems to be a connection issue postfix and my webapp. Viktor
> suggested it could be an issue with my OpenSSL implementation. The dev
> webapp is running on MacOS X 10.10 which should have a very recent
> version. OpenSSL 0.9.8za 5 Jun 2014.
That's not recent at all. This is a recently patched, but by now
ancient OpenSSL. OpenSSL 0.9.8 does not support TLS 1.2 (or TLS
1.1 IIRC), and so removing SSLv3 ciphers leaves it with none.
> Dec 7 22:07:25 hosting1 postfix/smtpd[4350]: connect from
> x-x-x-x.phnx.qwest.net[x.x.x.x]
> Dec 7 22:07:25 hosting1 postfix/smtpd[4350]: warning: TLS library
> problem: 4350:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version
> number:s3_pkt.c:337:
Wireshark!
> Not sure where those configs from dovecot comes into play when it's
> postfix showing the error.
It doesn't. Someone posted dovecot settings, I pointed out those were
unwise.
> Do Viktor's suggested dovecot configs also pertain to postfix?
No.
--
Viktor.
