[email protected] (Jason Mann), 2017.01.27 (Fri) 15:41 (CET): > Hello list. > > I'm trying to configure OpenSMTPD 5.9.2 on a FreeBSD server but I'm seeing > anomalous behaviour with one of my listen directives. > > The directive in question is: > > listen on egress tls-require hostname mail.mydomain.net > > My only other listen directive is usual localhost one. > > The smtpd.conf man page states: "tls-require may be used to force clients > to establish a secure connection before being allowed to start an SMTP > transaction". > > I ran a telnet test against the server to see how the forcing of TLS takes > place, but it didn't happen. I was able to manually submit a message to > OpenSMTPD without TLS as follows:
$ for i in smtp mta expand lookup rules; do smtpctl trace $i; done (do your test and watch your logfiles to see what goes why where.) $ for i in smtp mta expand lookup rules; do smtpctl untrace $i; done Be quick, lots of output to your log file. Marcus > $ telnet a.mx.mydomain.net 25 > Trying xxxx:xxx:xx:xxx::x:xxxx... > Connected to a.mx.mydomain.net. > Escape character is '^]'. > 220 mail.mydomain.net ESMTP OpenSMTPD > HELO jmann-mbp > 250 mail.mydomain.net Hello jmann-mbp > [IPv6:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx], > pleased to meet you > MAIL FROM:<jmann@jmann-mbp> > 250 2.0.0: Ok > RCPT TO:<[email protected]> > 250 2.1.5 Destination address valid: Recipient ok > DATA > 354 Enter mail, end with "." on a line by itself > From: Jason Mann <jmann@jmann-mbp> > To: Jason Mann <[email protected]> > Subject: Test 4 > > This is a test. > . > 250 2.0.0: f20f3998 Message accepted for delivery > QUIT > 221 2.0.0: Bye > > What may be wrong here? > > Kind regards, > > Jason > > > !DSPAM:588b5c5b241071631238794! -- You received this mail because you are subscribed to [email protected] To unsubscribe, send a mail to: [email protected]
