Damian via Postfix-users:
> I am currently doing some tests with Postfix 3.10 and postfix-tlspol
> (using QUERYwithTLSRPT).
>
> I see positive feedback for DANE as well as MTA-STS on the tlsrpt
> socket. However, I was not able to produce negative feedback yet. In
> case of "non DNSSEC destinat
On Tue, Mar 25, 2025 at 11:46:33AM +0100, Damian via Postfix-users wrote:
> ... if I set smtpd_tls_security_level=no ...
That is not a valid value of that parameter, so smtpd will bail out with
a fatal error. If you use "none", you might have better luck.
--
Viktor.
___
A tcpdump between smtp and smtpd shows a TCP handshake but no payload at
all.
That looks like the remote SMTP server wants to use TLS wrappermode,
but your Postfix SMTP client wants to use STARTTLS.
Ok, that was really dumb. Not seeing a banner should have given me a
clue that I broke the remo
