On Sun, 16 Oct 2022 at 02:12, Viktor Dukhovni <postfix-us...@dukhovni.org> wrote: > > So if presenting an essentially identical certificate, but with the > wrong hostname makes the client happy, that's rather unexpected. > > There's a non-trivial chance your observations are in error, but if > indeed presenting the wrong name makes the client stop short of > processing that would otherwise cause the handshake to be aborted, > that's rather ironic.
I don't think the wrong hostname is the reason. On the second server (with the working cert), we also have hundreds of customers with many email accounts and did not have any complaints, so I assume the bug is not manifesting itself there. But of course the reason could be different than the certificate itself. -- bye, Marki
