My Postfix Server 3.6.2 running on a newly created Fedora 35 is returning
self-signed SSL certs, where none were configured.
We're using a multi-cert Entrust certificate. All domains on the box get
email from one single mx domain.
To be clear TLS works, but if I run SSL Labs report it comes back
nuary 19, 2022 1:03 PM
To: Wayne Spivak
Cc: postfix-users@postfix.org
Subject: Re: TLS returning self-signed cert
Wayne Spivak:
> My Postfix Server 3.6.2 running on a newly created Fedora 35 is
> returning self-signed SSL certs, where none were configured.
Why do you believe that this is a self
Thank you Victor.
I will update the CAFile and report back.
I think you answered weistse question.
Regards,
Wayne
Sent from my iPhone; typos expected and endorsed by Apple
> On Jan 19, 2022, at 1:28 PM, Viktor Dukhovni
> wrote:
>
> On Wed, Jan 19, 2022 at 01:09:09PM
, Wayne Spivak wrote:
> Thank you Victor.
>
> I will update the CAFile and report back.
Updating the CAfile probably won't help you. You need to add append the
intermediate certificates in questio to the server certificate file.
--
Viktor.
19, 2022 3:17 PM
To: postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 03:07:29PM -0500, Wayne Spivak wrote:
> Still not working...
That's not particularly illuminating. You'll need to reply with "postconf
-nf" and "postconf -Mf&q
I'll do this one step at a time (I need to do other things)..
Again, thank you.
I created the combo with
-- Begin Priviate
--End Private
--Begin Certificate
--End Certificate
-- Begin Intermediate
-- End Intermediate
I have one multi-domain certificate, however for email all the emails on
ser
Missing logs:
This is with the new combo certificate
Mail log:
Jan 19 14:52:55 mcq postfix/smtpd[156224]: warning: TLS library problem:
error:0908F066:PEM routines:get_header_and_data:bad end
line:crypto/pem/pem_lib.c:856:
Jan 19 14:52:55 mcq postfix/smtpd[156224]: warning: error loading private
ch of short hand, sorry)
-Original Message-
From: owner-postfix-us...@postfix.org On
Behalf Of Viktor Dukhovni
Sent: Wednesday, January 19, 2022 4:37 PM
To: postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 04:23:58PM -0500, Wayne Spivak wrote:
>
Clearly /etc/postfix/tls/ws.pem is malformed. How are you constructing this
file? It should look like (each line should end with a newline character,
i.e. LF not CR or CR+LF):
>My file looks like
-BEGIN PRIVATE KEY-
... base64 data ...
-END PRIVATE KEY-
-BEGIN CERTI
postfix-users@postfix.org
Subject: Re: Doing something wrong.
On Wed, Jan 19, 2022 at 04:40:29PM -0500, Wayne Spivak wrote:
> I am creating the file by using cat file1 file2 file3 > ws.pem (which
> is my test combo file)
Does the last "line" of each of the files end in a newlin
Thank you. It’s appreciated.
I’ll work on the other issue and see if I can solve it.
Regards,
Wayne
Wayne Spivak
SBA.NET.WEB
A div of SBA * Consulting LTD
Tel LI: +1 (516) 221-3306
NY Tel: +1 (212) 487-5085
Tel CT: +1-860-760-0250
Fax: +1 (516) 387-1184
mailto:wspi
I run a postfix install which requires authentication and pipes all email
through Amavis (spam checking).
My PHPList (broadcast only) goes through port 587, and since it sits on the
server, it doesn't need authentication (I'm the only user).
I just added Amavis Clamscan, which is working co
Thank you.
I tried it, and it didn’t work.
Applicable snippets from files are:
My main.cf
content_filter=smtp-amavis:[127.0.0.1]:10024 meta_directory = /etc/postfix
smtp_tls_security_level = may
smtpd_tls_security_level = may
I did this to master.cf
127.0.0.1
Thank you
From: Gerald Galster via Postfix-users
Sent: Tuesday, April 25, 2023 10:05 AM
To: Postfix users
Subject: [pfx] Re: Postfix Amavis (Virus Checker) PHPList workaround
Applicable snippets from files are:
My main.cf
content_filter=smtp-amavis:[127.0.0.1]:10024 meta_direc
vis (Virus Checker) PHPList workaround
On Mon, Apr 24, 2023 at 02:23:54PM -0400, Wayne Spivak via Postfix-users
wrote:
> My PHPList (broadcast only) goes through port 587, and since it sits
> on the server, it doesn't need authentication (I'm the only user).
How does it send ma
15 matches
Mail list logo
