Neil Aggarwal wrote:
>Patrick:
>
>I tried manually sending a test message using the -CAfile argument
>to openssl. I do not get a complaint about the self signed
>certificate,
>but I still get the no valid recipients error, so it looks like the
>problem
>lies somewhere in my configuration of po
Wietse:
I see, port 587 is the submission port. I will use that.
Thanks for the info!
Neil
--
Neil Aggarwal, (972)834-1565, http://UnmeteredVPS.net/centos
Virtual private server with CentOS 6 preinstalled
Unmetered bandwidth = no overage charges
-Original Message-
The (legacy) smtps an
s...@postfix.org
> [mailto:owner-postfix-us...@postfix.org] On Behalf Of Wietse Venema
> Sent: Saturday, June 23, 2012 8:33 AM
> To: Postfix users
> Subject: Re: Trouble using StartSSL certificate for tls
>
> Neil Aggarwal:
> > Hmmm. I was testing this because Outlook
...@postfix.org
[mailto:owner-postfix-us...@postfix.org] On Behalf Of Wietse Venema
Sent: Saturday, June 23, 2012 8:33 AM
To: Postfix users
Subject: Re: Trouble using StartSSL certificate for tls
Neil Aggarwal:
> Hmmm. I was testing this because Outlook is not able to send a
> test message thro
Neil Aggarwal:
> Hmmm. I was testing this because Outlook is not able to send a
> test message through my server.
What are the symptoms:
Does Outlook connect to TCP port 25 (smtp), 465 (smtps), or 587
(submission)? Each port has a different configuration template in
master.cf.
POSTFIX logging.
...@postfix.org [mailto:owner-postfix-us...@postfix.org]
On Behalf Of Neil Aggarwal
Sent: Saturday, June 23, 2012 8:11 AM
To: postfix-users@postfix.org
Subject: RE: Trouble using StartSSL certificate for tls
Patrick:
> openssl s_client -connect mail.nsa-lp.com:25 -starttls smtp -CAfile
> /etc/
Alvin:
I am actually using their class 2 certificate so I did this:
cat mail.nsa-lp.com.crt sub.class2.server.ca.cer ca.cer >
mail.nsa-lp.com.all.crt
Then, I changed my main.cf file to reference it:
# Enable SMTP TLS
smtpd_tls_cert_file = /etc/ssl/mail.nsa-lp.com.all.crt
smtpd_tls_key_file = /e
Patrick:
> openssl s_client -connect mail.nsa-lp.com:25 -starttls smtp -CAfile
> /etc/ssl/ca-bundle.cer
The complaint about the self signed certificate disappears when I do that.
So, it seems the problem is that openssl does not recognize the CA cert.
> The SMTP server is dispassionate about yo
Try copying the contents of the chain certificates
`sub.class1.server.ca.pem` then `ca.pem` to the contents of your
public certificate, from depth to root.
2012/6/23 Patrick Ben Koetter :
> * Neil Aggarwal :
>> Hello:
>>
>> I created a certificate for my mail server using the StartSSL service
>> l
* Neil Aggarwal :
> Hello:
>
> I created a certificate for my mail server using the StartSSL service
> located
> at http://www.startssl.com/
>
> I set these lines in my main.cf (I already set up dovecot):
>
> # Rules for smtp auth
> smtpd_sasl_type = dovecot
> smtpd_sasl_path = private/auth
> sm
10 matches
Mail list logo
