Thanks Étienne,
So what's the difference between a MAriaDB Client file and the various
"tls_" settings in the connection.cf file (ie see
MYSQL_TABLE(5):https://www.postfix.org/mysql_table.5.html )?
Hi!
From MariaDB 10.5.2, the require_secure_transport system variable is
available. When set (by default it is off), connections attempted
using insecure transport will be rejected. Secure transports are
SSL/TLS, Unix sockets or named pipes. Note that requirements set for
specific user accounts will take precedence over this setting.
See
<https://mariadb.com/kb/en/securing-connections-for-client-and-server/#requiring-tls>
Maybe you enabled TLS server side at the same time, but I’d guess that
wasn’t the issue. I believe the issue is that you made it mandatory.
Postfix is configured not to use TLS, so it opens a plain connection,
and gets rejected (Access denied for user…) because of this setting.
Essentially, you need to make TLS optional or tell Postfix to use it
using a MariaDB client option file.
Regards,
--
This email has been checked for viruses by Avast antivirus software.
www.avast.com
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
