[pfx] Re: SSL_accept error for smtpd

On Tue, Jun 11, 2024 at 09:55:56AM +0800, Jeff Peng via Postfix-users wrote: > Jun 11 01:52:16 tls-mail postfix/smtpd[67409]: warning: > TLS library problem:error:1417A0C1:SSL routines: > tls_post_process_client_hello:no shared cipher: > ../ssl/statem/statem_srvr.c:2283: > Jun 11 01:52:16 tls-mail

[pfx] Re: SSL_accept error for smtpd

Thanks Wietse. The request is not maken by our client, so I am safe to ignore the error. If this does not happen with a legitimate client, then this could be someone who is looking for trouble (they failed) and you can ignore the problem. ___ Post

[pfx] Re: SSL_accept error for smtpd

Jeff Peng via Postfix-users: > Hello > > what's this error in mail.log? > > Jun 11 01:52:15 tls-mail postfix/smtpd[67409]: connect from > unknown[172.210.47.140] > Jun 11 01:52:16 tls-mail postfix/smtpd[67409]: SSL_accept error from > unknown[172.210.47.140]: -1 > Jun 11 01:52:16 tls-mail postf

Re: SSL_accept error from unknown[10.5.2.1]: lost connection

Thank you for the insight. It helped solving the issue. Un cordial saludo, Wolfgang Rauchholz +34 627 994 977 https://www.linkedin.com/in/wolfgangrauchholz/ On Tue, Feb 7, 2023 at 6:51 PM Wietse Venema wrote: > Wolfgang Paul Rauchholz: > > Hello I run postfix (postfix-3.5.8-4.el8.x86_64) on

Re: SSL_accept error from unknown[10.5.2.1]: lost connection

Wolfgang Paul Rauchholz: > Hello I run postfix (postfix-3.5.8-4.el8.x86_64) on my Rocky Linux 8.7 home > server > I setup postfix and dovecot as a firs step and it seems to be working; > meaning I can send and receive mails (I send/returned mail from a gmail > account). > But I find these error mes

Re: SSL_accept error from unknown[10.5.2.1]: lost connection

On Tue, Feb 07, 2023 at 05:59:52PM +0100, Wolfgang Paul Rauchholz wrote: > Feb 5 03:50:12 home postfix/smtps/smtpd[402300]: > SSL_accept error from unknown[10.5.2.1]: lost connection > Feb 5 03:50:12 home postfix/smtps/smtpd[402300]: > lost connection after CONNECT from unknown[10.5.2.1] > F

Re: SSL_accept error from unknown

On 19/10/2021 05:59, Maurizio Caloro wrote: see today logs "SSL_accept Error", please its this a known issue? installed Postfix 3.4.14, Openssl 1.1.1d, Debian 10.11. Oct 19 05:59:18 nmail postfix/smtps/smtpd[32720]: SSL_accept error from 232.115.xx.xx.static.ip.windstream.net[40.138.xx.xx]: los

RE: SSL_accept error on just one of several similar servers

> > > On Mar 26, 2018, at 1:07 AM, Michael Fox wrote: > > > > Any idea of what's wrong? Or how to find out what's wrong? > > Most likely a firewall is (mis)configured to block STARTTLS. > > -- > Viktor. You were correct! The IT guys started filtering by domain name in their firewall, w

Re: SSL_accept error on just one of several similar servers

> On Mar 26, 2018, at 1:07 AM, Michael Fox wrote: > > Any idea of what's wrong? Or how to find out what's wrong? Most likely a firewall is (mis)configured to block STARTTLS. -- Viktor.

Re: SSL_accept error from other MTA

On 15.01.2017 07:39, Noel Jones wrote: On 1/14/2017 2:40 AM, Admin Beckspaced wrote: All other MTA's don't seem to have any problems with TLS / STARTTLS. What can I do to fix this problem? Let the other MTA know that they got an issue with their TLS setup? Thanks & greetings Becki If your g

Re: SSL_accept error from other MTA

On 1/14/2017 2:40 AM, Admin Beckspaced wrote: > All other MTA's don't seem to have any problems with TLS / STARTTLS. > > What can I do to fix this problem? Let the other MTA know that they > got an issue with their TLS setup? > > Thanks & greetings > Becki If your goal is to get the mail flowin

Re: SSL_accept error from other MTA

> On Jan 14, 2017, at 8:51 AM, Admin Beckspaced wrote: > > 2017-01-14T14:41:43.183704+01:00 cx20 postfix/smtpd[25337]: initializing the > server-side TLS engine > 2017-01-14T14:41:43.195287+01:00 cx20 postfix/smtpd[25337]: connect from > mail.kommunalunternehmen.de[217.6.53.146] > 2017-01-14T1

Re: SSL_accept error from other MTA

On 14.01.2017 14:03, Christian Kivalo wrote: You could set smtpd_tls_loglevel = 1 and get some more information on the next connection attempt. Without knowing more details i'd say you have no cipher in common, that could be when you're dealing with an ancient version of exchange or some crap

Re: SSL_accept error from other MTA

Am 14. Jänner 2017 09:40:22 MEZ schrieb Admin Beckspaced : >Dear postfix users, > >I'm running Postfix version 2.11.6 on an OpenSUSE 42.1 box and all is >running sweet & fine ;) >Except a customer calls me that he can't receive emails from one of his >partners. > >After looking for the partner em

Re: SSL_accept error from ...outbound.protection.outlook.com

On Mon, Nov 07, 2016 at 10:30:06AM -0500, Bill Cole wrote: > >Nov 7 15:03:29 blueberry postfix/smtpd[18091]: > >mail-ve1eur01hn032d.outbound.protection.outlook.com[2a01:111:f400:fe1f::32d]: > >TLS cipher list "aNULL:-aNULL:HIGH:@STRENGTH:!aNULL" > > This is probably your problem. The austere cip

Re: SSL_accept error from ...outbound.protection.outlook.com

On 7 Nov 2016, at 9:26, Florian Piekert wrote: Hello everybody, another issue around TLS/SSL from me. I see tons of ==> mail/mail.log <== [...] Nov 7 15:03:29 blueberry postfix/smtpd[18091]: mail-ve1eur01hn032d.outbound.protection.outlook.com[2a01:111:f400:fe1f::32d]: TLS cipher list "aNULL

Re: SSL_accept error/TLS library problem

On Tue, Mar 08, 2016 at 10:10:13AM +0100, Thomas Keller wrote: > postfix/smtpd[2608]: connect from 61-216-2-13.HINET-IP.hinet.net[61.216.2.13] A compromised botnet machine is connecting to your Postfix server. > postfix/smtpd[2608]: warning: TLS library problem: 2608:error:1408F10B:SSL > routin

Re: SSL_accept error

On Mon Jun 01 2015 15:53:17 njo...@megan.vbhcs.org said: > > On 6/1/2015 4:19 PM, @lbutlr wrote: >> Jun 1 15:09:08 mail submit-tls/smtpd[88479]: SSL_accept error from >> unknown[50.253.97.91]: lost connection > This looks as if the client and the server don't have a common > cipher enabled. I

Re: SSL_accept error

On 6/1/2015 4:19 PM, @lbutlr wrote: > A user at a Starbucks is trying to send mail and getting an error on sending. > This is what I see in the logs: > > Jun 1 15:09:08 mail submit-tls/smtpd[88479]: warning: hostname > 50-253-97-91-static.hfc.comcastbusiness.net does not resolve to address > 5

Re: SSL_accept error

On Mon Jun 01 2015 15:19:57 @lbutlr said: > > A user at a Starbucks is trying to send mail and getting an error on sending. > This is what I see in the logs: One other detail I left out, openssl s_client -connect localhost:587 -starttls smtp works as expected. It also works remotely if I put t

Re: SSL_accept error from ...

Victor Duchovni: > On Fri, Jul 22, 2011 at 09:32:29AM -0400, Wietse Venema wrote: > > > > So what are those? > > > > Postfix prints all information that is available on the OpenSSL > > error stack. The absence of such logging suggests that the error > > stack is empty (perhaps the client hung up)

Re: SSL_accept error from ...

On Fri, Jul 22, 2011 at 09:32:29AM -0400, Wietse Venema wrote: > > So what are those? > > Postfix prints all information that is available on the OpenSSL > error stack. The absence of such logging suggests that the error > stack is empty (perhaps the client hung up), or that your grep(1) > comman

Re: SSL_accept error from ...

* Wietse Venema : > > That's all there was. OK, I'll just ignore those then. > > I would not deny that this user interface can be improved. One > minor improvement would be to log "lost connection" when the OpenSSL > error stack is empty (i.e. when ERR_peek_error() returns an end-of-data > indic

Re: SSL_accept error from ...

Ralf Hildebrandt: > * Wietse Venema : > > > > Jul 3 17:44:00 mail postfix/smtpd[1210]: SSL_accept error from > > > post.blossin.de[217.92.177.100]: -1 > > > Jul 3 17:53:22 mail postfix/smtpd[1174]: SSL_accept error from > > > post.blossin.de[217.92.177.100]: -1 > > > Jul 3 18:31:12 mail postf

Re: SSL_accept error from ...

* Wietse Venema : > > Jul 3 17:44:00 mail postfix/smtpd[1210]: SSL_accept error from > > post.blossin.de[217.92.177.100]: -1 > > Jul 3 17:53:22 mail postfix/smtpd[1174]: SSL_accept error from > > post.blossin.de[217.92.177.100]: -1 > > Jul 3 18:31:12 mail postfix/smtpd[8533]: SSL_accept error

Re: SSL_accept error from ...

Ralf Hildebrandt: > I'm seeing sporadic "SSL_accept error" messages and would like to know > their significance. Sometimes I'm seeing ": 0", sometime ": -1" > > A few examples: > > Jul 3 17:44:00 mail postfix/smtpd[1210]: SSL_accept error from > post.blossin.de[217.92.177.100]: -1 > Jul 3 17:5

Re: SSL_accept error / lost connection after STARTTLS

I ended up getting this to work after installing: apt-get install dovecot-postfix and accepting the dovecot-postfix.conf file that comes with the package. Hope this helps someone down the road, sorry for replying to myself. On Tue, Feb 16, 2010 at 9:23 PM, Merrick wrote: > I migrated an 8 yea

Re: SSL_accept error from unknown[x.x.x.]: -1

On 11/26/2009 9:43 PM, sosogh wrote: Hi list I am running two postfix on two servers.One acts as smtp tls client, the other one acts as smtpd tls server. I tried to send mails from smtp tls client to smtpd tls server --- IP are

Re: SSL_accept error

2009/8/14 Barney Desmond > 2009/8/14 Ebbe Hjorth : > > No more hints? :-( > > Do you still have a problem? You said, "Ahh, now we are talkin", which > sounds like you were successful. > > Patrick's docs ( > http://postfix.state-of-mind.de/patrick.koetter/smtpauth/postfix_tls_support.html > ) > ar

Re: SSL_accept error

2009/8/14 Ebbe Hjorth : > No more hints? :-( Do you still have a problem? You said, "Ahh, now we are talkin", which sounds like you were successful. Patrick's docs (http://postfix.state-of-mind.de/patrick.koetter/smtpauth/postfix_tls_support.html) are great, but I think they're a little misleadi

Re: SSL_accept error

2009/8/12 Ebbe Hjorth > > > 2009/8/12 Zaeem Arshad > > >> >> On Tue, Aug 11, 2009 at 11:27 PM, Ebbe Hjorth wrote: >> >>> >>> >>> 2009/8/11 Brian Evans - Postfix List >>> Ebbe Hjorth wrote: > 2009/8/10 Brian Evans - Postfix List >>> > > > >

Re: SSL_accept error

2009/8/12 Zaeem Arshad > > > On Tue, Aug 11, 2009 at 11:27 PM, Ebbe Hjorth wrote: > >> >> >> 2009/8/11 Brian Evans - Postfix List >> >>> Ebbe Hjorth wrote: >>> > 2009/8/10 Brian Evans - Postfix List >> > > >>> > >>> > A great guide by a frequent poster here is

Re: SSL_accept error

On Tue, Aug 11, 2009 at 11:27 PM, Ebbe Hjorth wrote: > > > 2009/8/11 Brian Evans - Postfix List > >> Ebbe Hjorth wrote: >> > 2009/8/10 Brian Evans - Postfix List > > > >> > >> > A great guide by a frequent poster here is >> > >> http://postfix.state-of-mind.de

Re: SSL_accept error

2009/8/11 Brian Evans - Postfix List > Brian Evans - Postfix List wrote: > > Ebbe Hjorth wrote: > > > >> 2009/8/11 Brian Evans - Postfix List >> > > >> > >> Ebbe Hjorth wrote: > >> > 2009/8/10 Brian Evans - Postfix List >>

Re: SSL_accept error

Brian Evans - Postfix List wrote: > Ebbe Hjorth wrote: > >> 2009/8/11 Brian Evans - Postfix List > > >> >> Ebbe Hjorth wrote: >> > 2009/8/10 Brian Evans - Postfix List > >> >

Re: SSL_accept error

Ebbe Hjorth wrote: > > > 2009/8/11 Brian Evans - Postfix List > > > Ebbe Hjorth wrote: > > 2009/8/10 Brian Evans - Postfix List > > >> > > > >

Re: SSL_accept error

2009/8/11 Brian Evans - Postfix List > Ebbe Hjorth wrote: > > 2009/8/10 Brian Evans - Postfix List > > > > > > A great guide by a frequent poster here is > > > http://postfix.state-of-mind.de/patrick.koetter/smtpauth/postfix_tls_support.html > > > > > > That i

Re: SSL_accept error

Ebbe Hjorth wrote: > 2009/8/10 Brian Evans - Postfix List > > > A great guide by a frequent poster here is > > http://postfix.state-of-mind.de/patrick.koetter/smtpauth/postfix_tls_support.html > > > That is a briliant link, i have read it all and love it,

Re: SSL_accept error

2009/8/10 Brian Evans - Postfix List > Ebbe Hjorth wrote: > > Hi, > > > > I just installed FreeBSD, postfix and dovecot. > > > > I tried to do the setup from purplehat.org , but > > i keep getting the following error, please help. > > > > Aug 9 14:22:55 mail02 postfix/smtpd

Re: SSL_accept error

On Mon, 10 Aug 2009, Ebbe Hjorth wrote: > 2009/8/10 Sahil Tandon > > > On Aug 10, 2009, at 1:16 PM, Brian Evans - Postfix List < > > grkni...@scent-team.com> wrote: > > > > Ebbe Hjorth wrote: > >> > >>> Hi, > >>> > >>> I just installed FreeBSD, postfix and dovecot. > >>> > >>> I tried to do the

Re: SSL_accept error

On Aug 10, 2009, at 1:16 PM, Brian Evans - Postfix List > wrote: Ebbe Hjorth wrote: Hi, I just installed FreeBSD, postfix and dovecot. I tried to do the setup from purplehat.org , but i keep getting the following error, please help. Aug 9 14:22:55 mail02 postfix/smt

Re: SSL_accept error

Ebbe Hjorth wrote: > Hi, > > I just installed FreeBSD, postfix and dovecot. > > I tried to do the setup from purplehat.org , but > i keep getting the following error, please help. > > Aug 9 14:22:55 mail02 postfix/smtpd[1969]: SSL_accept error from > mail-ew0-f224.googl

Re: SSL_accept error - somebody that could tell me what to do

Bastian Blank wrote: > On Fri, Jun 19, 2009 at 04:03:39PM +0200, Jelle de Jong wrote: >> I got some more debug information from the other server that initiates >> the sending of the mail. > > "terminated by signal 11". Signal 11 is SIGSEGV, aka segmentation fault, > on most systems out there. Ther

Re: SSL_accept error - somebody that could tell me what to do

On Fri, Jun 19, 2009 at 04:03:39PM +0200, Jelle de Jong wrote: > I got some more debug information from the other server that initiates > the sending of the mail. "terminated by signal 11". Signal 11 is SIGSEGV, aka segmentation fault, on most systems out there. There system is severely broken. B

Re: SSL_accept error - somebody that could tell me what to do

Victor Duchovni wrote: > On Wed, Jun 17, 2009 at 06:43:34PM +0200, Jelle de Jong wrote: > >> Bastian Blank wrote: >>> On Wed, Jun 17, 2009 at 05:20:38PM +0200, Jelle de Jong wrote: Would you be willing to have an other look at the logs? I still have the issue and I had to turn smtpd_tls_

Re: SSL_accept error - somebody that could tell me what to do

On Wed, Jun 17, 2009 at 06:43:34PM +0200, Jelle de Jong wrote: > Bastian Blank wrote: > > On Wed, Jun 17, 2009 at 05:20:38PM +0200, Jelle de Jong wrote: > >> Would you be willing to have an other look at the logs? I still have the > >> issue and I had to turn smtpd_tls_security_level to none, so t

Re: SSL_accept error - somebody that could tell me what to do

Bastian Blank wrote: > On Wed, Jun 17, 2009 at 05:20:38PM +0200, Jelle de Jong wrote: >> Would you be willing to have an other look at the logs? I still have the >> issue and I had to turn smtpd_tls_security_level to none, so the work >> processes of my customer could go on, but I don't think this

Re: SSL_accept error - somebody that could tell me what to do

On Wed, Jun 17, 2009 at 05:20:38PM +0200, Jelle de Jong wrote: > Would you be willing to have an other look at the logs? I still have the > issue and I had to turn smtpd_tls_security_level to none, so the work > processes of my customer could go on, but I don't think this workaround > will be the s

Re: SSL_accept error - somebody that could tell me what to do

Jelle de Jong wrote: > Wietse Venema wrote: >> Wietse Venema: >>> Jelle de Jong: Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= Jun 15 13:57:4

Re: SSL_accept error - somebody that could tell me what to do

Victor Duchovni wrote: > On Mon, Jun 15, 2009 at 04:48:26PM +0200, Jelle de Jong wrote: > >> Thank you Wietse, I have asked the other server party to see if they can >> sent me the logs, I hope they will sent them, they say the problem is on >> my end, but I have no diffidence for that so far. >>

Re: SSL_accept error - somebody that could tell me what to do

Wietse Venema wrote: > Wietse Venema: >> Jelle de Jong: >>> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed >>> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: >>> YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= >>> Jun 15 13:57:46 emily postfix/smtpd[23401]:

Re: SSL_accept error from - somebody that could tell me what to do

Wietse Venema wrote: > Wietse Venema: >> Jelle de Jong: >>> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed >>> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: >>> YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= >>> Jun 15 13:57:46 emily postfix/smtpd[23401]:

Re: SSL_accept error from - somebody that could tell me what to do

On Mon, Jun 15, 2009 at 04:48:26PM +0200, Jelle de Jong wrote: > Thank you Wietse, I have asked the other server party to see if they can > sent me the logs, I hope they will sent them, they say the problem is on > my end, but I have no diffidence for that so far. > > I will also sent the debug i

Re: SSL_accept error from - somebody that could tell me what to do

Wietse Venema wrote: > Jelle de Jong: >> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed >> Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: >> YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= >> Jun 15 13:57:46 emily postfix/smtpd[23401]: private/tlsmgr: wante

Re: SSL_accept error from - somebody that could tell me what to do

Wietse Venema: > Jelle de Jong: > > Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed > > Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: > > YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= > > Jun 15 13:57:46 emily postfix/smtpd[23401]: private/tlsmgr: wanted

Re: SSL_accept error from - somebody that could tell me what to do

Jelle de Jong: > Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute name: seed > Jun 15 13:57:46 emily postfix/smtpd[23401]: input attribute value: > YuvlIV0a1sMFU6JK6BcvsKr6WJm8YP7zsFNJz/XEv+w= > Jun 15 13:57:46 emily postfix/smtpd[23401]: private/tlsmgr: wanted attribute: > (list termi