Hello Todd,
I didn't understand your previous answer.You're saying that the remote
connection, google, is using a self signed certificate but at the end you say
gmail has a real certificate.
I had the same behavior when I wrote to a gmail address.
Regards
Le mercredi 8 juin 2022 à 17:29:32 UTC+2, Todd C. Miller
<[email protected]> a écrit :
On Wed, 08 Jun 2022 08:16:20 -0700, [email protected] wrote:
> Hello misc
>
> Could somebody please tell me what cert is smtpd refering to?
>
> smtpd[11054]: 106b2cfae48c5616 mta cert-check result="unverified"
This is probably a warning that the remote side of the connection
is using a self-signed certificate. You should be able to tell
which connection this is from by matching 106b2cfae48c5616 to other
lines in /var/log/mail.
For example, in my own maillog I see things like:
smtpd[8486]: 09b3582e47599342 mta connecting address=smtp://142.250.138.27:25
host=142.250.138.27
smtpd[8486]: 09b3582e47599342 mta connected
smtpd[8486]: 09b3582e47599342 mta tls
ciphers=TLSv1.3:TLS_CHACHA20_POLY1305_SHA256:256
smtpd[8486]: 09b3582e47599342 mta cert-check result="unverified"
smtpd[8486]: 09b3582e47599342 mta delivery evpid=5e4cf104b920fff4
from=<someone@localhost> to=<[email protected]> rcpt=<-> source="10.1.1.1"
relay="142.250.138.27 (142.250.138.27)" delay=4s result="Ok" stat="250 ok
1654617630 qp 52476"
smtpd[8486]: 09b3582e47599342 mta disconnected reason=quit messages=1
I've changed the addresses in the log but you get the idead (gmail
has a real certificate).
- todd
