@lbutlr:
> On 13 Apr 2019, at 00:57, Dominic Raferd <domi...@timedicer.co.uk> =
> wrote:
> > I too find that hardenize complains about my STARTTLS without any =
> details as to why. Like @lbutlr (and most of us) I offer STARTTLS on =
> port 25 but not AUTH. However I see this message in my log after the =
> test ran, I think hardenize is hitting my server too hard and maybe that =
> is why it is (wrongly) saying there is a problem with the server:
> >=20
> > 2019-04-13 07:36:23 streamingbats postfix/smtpd[19724]: warning: =
> Connection rate limit exceeded: 31 from =
> outbound.hardenize.com[18.233.176.231] for service smtp
>
> Checking my logs:
>
> postfix/smtpd[45229]: connect from outbound.hardenize.com[18.233.176.231]
> postfix/smtpd[45229]: SSL_accept error from
> outbound.hardenize.com[18.233.176.231]: -1
> postfix/smtpd[45229]: lost connection after STARTTLS from
> outbound.hardenize.com[18.233.176.231]
> postfix/smtpd[45229]: disconnect from outbound.hardenize.com[18.233.176.231]
> ehlo=1 starttls=0/1 ...
Same here. Speculation: they require PKI certificate verification.
Wietse
