Hello,
I have following configuration applied:
admin@flopster ~ $ sudo postconf | grep ^smtp_tls
smtp_tls_CAfile =
smtp_tls_CApath =
smtp_tls_block_early_mail_reply = no
smtp_tls_cert_file = /etc/ssl/domains/flopster.at.encryp.ch/fullchain
smtp_tls_chain_files =
smtp_tls_ciphers = medium
smtp_t
On 8/15/23 14:49, Viktor Dukhovni via Postfix-users wrote:
smtp_tls_loglevel = 0
Level 1 is typically more informative at negligible additional cost.
I have set this option and tried to send email once again:
Aug 15 18:11:48 flopster postfix/smtp[6025]: warning: TLS library problem:
error
Well, in my case this is recipient verification - I am sending abuse complaints
in bulk and to eliminate tons of email bounces I have enabled address
verification.
On 8/15/23 15:43, Viktor Dukhovni via Postfix-users wrote:
So it seems that legitimate domains (from which one actually cares to
r
I have checked email server of mine and can confirm I am seeing that too (logs
are since Aug 13 03:50:38 EEST):
admin@flopster ~ $ sudo grep -e .outbound.protection.outlook.com
/var/log/mail.log | grep 'ehlo=1 starttls=1 quit=1 commands=3' | tail
Aug 16 13:47:34 flopster postfix/smtpd[23237]:
On 8/16/23 13:55, Viktor Dukhovni via Postfix-users wrote:
There's good reason for that, your MX host has DANE TLSA records that
don't match its certificate chain:
Thanks for pointing this out, I forgot to update it when migrating from RSA to
ECC certificate.
On 8/16/23 13:55, Viktor Dukhovni
Hello,
My email server sends lots of emails to networks in China, however they seem to
have packet loss due to what my postfix instance struggles to deliver letters
to them - only few letters occasionally got successfully sent:
$ sudo grep -e abuse@china -e \\.cn /var/log/mail.log | grep -e ds
