niXforums Forum Index
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   PreferencesPreferences   Log in to check your private messagesLog in to check your private messages   Log inLog in 
·  nixdoc.net ·  man pages ·  Linux HOWTOs ·  FreeBSD Tips ·  Forums
navigation Forum index » Apps » Qmail
[netqmail] ignore STARTTLS for certain hosts or configure NON-TLS fallback
Post new topic   Reply to topic Page 1 of 1 [2 Posts] View previous topic :: View next topic
Author Message
Lars Uhlmann
*nix forums beginner


Joined: 13 Jul 2006
Posts: 1

PostPosted: Thu Jul 13, 2006 1:02 pm    Post subject: [netqmail] ignore STARTTLS for certain hosts or configure NON-TLS fallback Reply with quote
We have problems delivering mail to an mx host. This host instantly dies after
the STARTTLS command:

$ telnet x.x.x.x 25
| Trying x.x.x.x...
| Connected to x.x.x.x.
| Escape character is '^]'.
| 220 XXXXX Mailserver ESMTP server ready.
| EHLO fqdn
| 250-XXXXX Mailserver Hello fqdn; ESMTPs are:
| 250-TIME
| 250-SIZE 0
| 250-STARTTLS
| 250 HELP
| STARTTLS
| 220 OK, begin SSL/TLS negotiation now.
| Connection closed by foreign host.

$ openssl s_client -connect x.x.x.x:25 -starttls smtp
| CONNECTED(00000003)
| 26274:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:

Is there a way to ignore the STARTTLS announcement from those hosts? Something
like a "ignore_starttls" blacklist?

regards
Lars Uhlmann
Back to top
Kyle Wheeler
*nix forums Guru Wannabe


Joined: 07 Jan 2005
Posts: 208

PostPosted: Fri Jul 14, 2006 1:56 pm    Post subject: Re: [netqmail] ignore STARTTLS for certain hosts or configure NON-TLS fallback Reply with quote
On Thursday, July 13 at 03:02 PM, quoth Lars Uhlmann:
Quote:
Is there a way to ignore the STARTTLS announcement from those hosts?
Something like a "ignore_starttls" blacklist?

STARTTLS support is not part of qmail – chances are you have applied a
patch to get that support to work. So… try contacting the person
(people?) who created the SSL patch you’re using.

~Kyle
--
'We hold these truths to be self-evident,' they said, 'that all men
are created equal.' Strange as it may seem, that was the first time in
history that anyone had ever bothered to write that down. Decisions
are made by those who show up.
-- Jed Bartlet, The West Wing
Back to top
Google
Back to top
Display posts from previous:   
Post new topic   Reply to topic Page 1 of 1 [2 Posts] View previous topic :: View next topic
The time now is Sun Nov 23, 2008 10:24 am | All times are GMT
navigation Forum index » Apps » Qmail
Jump to:  

Similar Topics
Topic Author Forum Replies Last Post
No new posts Postfix Multiple Relay Hosts? blaze Postfix 0 Wed Jun 25, 2008 5:02 am
No new posts Deliver msg to multiple hosts jures Postfix 2 Fri Feb 29, 2008 4:21 pm
No new posts segv error with starttls in 4.62 on OSX 10.4.7 Ian Eiloart Exim 1 Fri Jul 21, 2006 11:30 am
No new posts I need to configure DHCP server to force client to obtain... malazc@gmail.com networking 1 Thu Jul 20, 2006 8:44 pm
No new posts way to ignore pga_aggregate_target for a batch job? NetComrade Server 3 Thu Jul 20, 2006 6:07 pm

Inkjet Printer | Mortgage Calculator | Loans | Mortgage | Myspace Proxy
Copyright © 2004-2005 DeniX Solutions SRL
 
Other DeniX Solutions sites: Unix/Linux blog |  electronics forum |  medicine forum |  science forum | 
Privacy Policy


Powered by phpBB © 2001, 2005 phpBB Group

[ Time: 0.1517s ][ Queries: 16 (0.0808s) ][ GZIP on - Debug on ]