On 12/11/2016 09:43 AM, John Fawcett wrote: > On 12/11/2016 09:25 AM, Dominic Raferd wrote: >> In general my postfix mail server is working well, it is receiving >> emails with optional STARTTLS. But I am occasionally seeing an error >> message like this in the log: >> >> 2016-12-11 00:32:19 dl1 postfix/smtpd[13665]: SSL_accept error from >> unknown[14.215.156.100]: lost connection >> >> The connection giving rise to the error is never from one of our >> machines/users. Should I be worried about it? Does it indicate some >> bad configuration on my side? >> >> Dominic > Dominic > > it would help if you posted your configuration. > I suspect that you have the smtps service configured in master.cf. If > anyone is using it, it should be only your own users, so errors from > unrecognised ips will not be a problem and are probably not for any > legitimate reason. If you don't need the smtps service, you should > consider commenting it out completely in master.cf. > John > I just did a quick check. I see these errors on STARTTLS in both
smtpd and submission, so maybe they are not linked to smtps. Nevertheless they can probably be ignored, since if they are not your own users, the only other legitimate sources would be email servers transmitting email for your users and those are very unlikely to be "unknown" as in (unknown[14.215.156.100]:) which means they don't have proper reverse dns set up. John
