Hi Viktor,
On Thu, 3 Feb 2022 at 14:07, Viktor Dukhovni
wrote:
> On Thu, Feb 03, 2022 at 01:39:44PM -0500, Martin Hicks wrote:
>
> > The only configuration change I made in response to this discussion was
> > to disable smtpd_tls_ask_ccert - I'm not sure why this was ever enabled.
> >
> > I'll u
On Thu, Feb 03, 2022 at 01:39:44PM -0500, Martin Hicks wrote:
> The only configuration change I made in response to this discussion was
> to disable smtpd_tls_ask_ccert - I'm not sure why this was ever enabled.
>
> I'll update in a week or two when I see another e-mail from aircanada.
You can al
On Thu, Feb 03, 2022 at 07:27:30PM +0100, Matus UHLAR - fantomas wrote:
> > On Thu, Feb 03, 2022 at 06:51:09PM +0100, Matus UHLAR - fantomas wrote:
> > > sorry, the third one is not expired:
> > >
> > > Issuer: O = Digital Signature Trust Co., CN = DST Root CA X3
> > > Validity
> >
On Thu, Feb 03, 2022 at 06:51:09PM +0100, Matus UHLAR - fantomas wrote:
sorry, the third one is not expired:
Issuer: O = Digital Signature Trust Co., CN = DST Root CA X3
Validity
Not Before: Jan 20 19:14:03 2021 GMT
Not After : Sep 30 18:14:03 2024 GMT
On Thu, Feb 03, 2022 at 06:51:09PM +0100, Matus UHLAR - fantomas wrote:
> sorry, the third one is not expired:
>
> Issuer: O = Digital Signature Trust Co., CN = DST Root CA X3
> Validity
> Not Before: Jan 20 19:14:03 2021 GMT
> Not After : Sep 30 18:14:03 2
On Thu, Feb 03, 2022 at 03:42:39PM +0100, Matus UHLAR - fantomas wrote:
Certificate chain
0 s:CN = darwin.bork.org
i:C = US, O = Let's Encrypt, CN = R3
1 s:C = US, O = Let's Encrypt, CN = R3
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
2 s:C = US, O = Internet Secur
On Thu, Feb 03, 2022 at 03:42:39PM +0100, Matus UHLAR - fantomas wrote:
> Certificate chain
> 0 s:CN = darwin.bork.org
>i:C = US, O = Let's Encrypt, CN = R3
> 1 s:C = US, O = Let's Encrypt, CN = R3
>i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
> 2 s:C = US, O = Inte
On 2/3/22 15:42, Matus UHLAR - fantomas wrote:
it might be this:
% openssl s_client -connect darwin.bork.org:25 -starttls smtp
CONNECTED(0003)
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R3
verify return:1
de
On Thu, Feb 03, 2022 at 08:24:07AM -0500, Martin Hicks wrote:
> There is an smtp server that is trying to send e-mail to my
> domain, but with an expired certificate:
At this point, what's needed to help you are outputs from "postconf -nf"
and "postconf -Mf" (verbatim with no changes in whitespac
On Thu, Feb 03, 2022 at 08:24:07AM -0500, Martin Hicks wrote:
There is an smtp server that is trying to send e-mail to my
domain, but with an expired certificate:
Feb 2 11:20:52 darwin postfix/smtpd[9181]: warning: TLS library problem:
error:14094415:SSL routines:ssl3_read_bytes:sslv3 alert cer
Hi
On Thu, Feb 03, 2022 at 08:24:07AM -0500, Martin Hicks wrote:
> There is an smtp server that is trying to send e-mail to my
> domain, but with an expired certificate:
> Feb 2 11:20:52 darwin postfix/smtpd[9181]: warning: TLS library problem:
> error:14094415:SSL routines:ssl3_read_bytes:sslv3
Hi,
There is an smtp server that is trying to send e-mail to my
domain, but with an expired certificate:
Feb 2 11:20:52 darwin postfix/smtpd[9181]: connect from
r114.mail.aircanada.com[172.82.216.114]
Feb 2 11:20:52 darwin postfix/smtpd[9181]: SSL_accept error from
r114.mail.aircanada.com[1
12 matches
Mail list logo
