On 12/27/22 12:49, Aaron Axelsen wrote:
I've been trying to get the correct recipe of settings to allow postfix
to connect to mysql where ssl is required. So far I have the following
that is not working:
user = mysqluser
password = XXX
hosts = secure-mysql-db.example.com
dbname = mail
query = SELECT 1 FROM users WHERE email='%s'
tls_ciphers = TLSv1.3
tls_CAfile = /path/to/mysql-ca.crt
Now I'm getting the following error: SSL connection error: no cipher match
The MySQL server does support the listed cipher. Connecting via command
line works as expected. Connecting without ssl via postfix works fine also.
I'm running Postfix 3.5.17 on Debian 11.5
What MySQL version and how is it configured? For some time now MySQL
has actually implemented 'SSL' connections as TLS and should not require
a client certificate.
--
Phil Stracchino
Babylon Communications
ph...@caerllewys.net
p...@co.ordinate.org
Landline: +1.603.293.8485
Mobile: +1.603.998.6958
