[pfx] Re: Accepting mail from old Dell iDRAC

[Charles Sprickman via Postfix-users]

> On Aug 4, 2023, at 1:23 PM, Charles Sprickman via Postfix-users 
> <postfix-users@postfix.org> wrote:
> 
> 
> 
>> On Aug 3, 2023, at 5:46 AM, Jaroslaw Rafa via Postfix-users 
>> <postfix-users@postfix.org> wrote:
>> 
>> Dnia  2.08.2023 o godz. 23:28:09 Charles Sprickman via Postfix-users pisze:
>>>> The iDRAC is trying to use STARTTLS, so encrypted SMTP transport appears
>>>> to be supported.  As noted by others, it may be simplest to not offer
>>>> it STARTTLS (smtpd_discard_ehlo_keyword_address_maps).
>>> 
>>> I'll use that as a fallback, but I still kind of hate sending my relay
>>> account's user/pass cleartext across the internet...
>> 
>> The IP address 10.10.10.2 shown in your logs suggests that this is sent over
>> your local network. Could you explain how is your user/pass sent across the
>> Internet? Is your iDRAC communicating with remote Postfix somewhere on the
>> Internet, and not on the same machine where iDRAC is mounted? (I assumed
>> this is the case...)
> 
> The Dell box is in my garage and the mail server is on a box in a colo 
> space...
> 
> It's probably time to just nail up a VPN to the colo I guess.

Just following up to myself here, but this Dell POS just bails if it can't do 
TLS, lol:

Aug  5 00:30:52 mail postfix/smtpd[76663]: < unknown[10.3.2.5]: EHLO ANON
Aug  5 00:30:52 mail postfix/smtpd[76663]: discarding EHLO keywords: STARTTLS
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-ANON
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-PIPELINING
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-SIZE 
80480000
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-VRFY
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-ETRN
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-AUTH PLAIN 
LOGIN
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 
250-ENHANCEDSTATUSCODES
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-8BITMIME
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-DSN
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250-SMTPUTF8
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 250 CHUNKING
Aug  5 00:30:52 mail postfix/smtpd[76663]: smtp_stream_setup: maxtime=300 
enable_deadline=0 min_data_rate=0
Aug  5 00:30:52 mail postfix/smtpd[76663]: < unknown[10.3.2.5]: QUIT
Aug  5 00:30:52 mail postfix/smtpd[76663]: > unknown[10.3.2.5]: 221 2.0.0 Bye

I believe I read somewhere that TLS + AUTH are linked, so I guess I'll just add 
10.3.2.5 to "mynetworks" and call it a day...

Thanks all!

Charles

> 
> C
> 
>> -- 
>> Regards,
>>  Jaroslaw Rafa
>>  r...@rafa.eu.org
>> --
>> "In a million years, when kids go to school, they're gonna know: once there
>> was a Hushpuppy, and she lived with her daddy in the Bathtub."
>> _______________________________________________
>> Postfix-users mailing list -- postfix-users@postfix.org
>> To unsubscribe send an email to postfix-users-le...@postfix.org
> 
> _______________________________________________
> Postfix-users mailing list -- postfix-users@postfix.org
> To unsubscribe send an email to postfix-users-le...@postfix.org

_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org