On 2014-06-22 14:19, Gilles Chehade wrote: > On Sat, Jun 21, 2014 at 11:58:32PM -0300, Hugo Osvaldo Barrera wrote: > > Hi, > > > > I'm getting a syntax error on this line: > > > > accept from any for domain barrera.io relay backup mx2.barrera.io verify > > > > But, according to the man page, it looks fine. What am I doing wrong? :( > > > > does it work if you remove "verify" ? > > -- > Gilles Chehade > > https://www.poolp.org @poolpOrg
Removing verify (or replacing it with "tls") works, but I get a new error: # smtpd -dvvv debug: init ssl-tree info: loading pki information for mx2 info: OpenSMTPD 5.4.3 starting debug: bounce warning after 4h debug: using "fs" queue backend debug: using "ramqueue" scheduler backend debug: using "ram" stat backend info: startup [debug mode] queue: queue encryption enabled debug: parent_send_config_ruleset: reloading debug: ca_engine_init: using RSA privsep engine debug: init ssl-tree debug: parent_send_config: configuring pony process info: loading pki keys for mx2 debug: parent_send_config: configuring ca process debug: queue: done loading queue into scheduler debug: smtp: listen on IPv6:2800:40:7aa::1 port 25 flags 0x1 pki "mx2" debug: init private ssl-tree debug: smtp: listen on IPv6:fe80::240:63ff:fef6:efdf%vr0 port 25 flags 0x1 pki "mx2" debug: smtp: listen on 190.210.108.249 port 25 flags 0x1 pki "mx2" debug: smtp: listen on 127.0.0.1 port 25 flags 0x0 pki "" debug: smtp: listen on IPv6:fe80::1%lo0 port 25 flags 0x0 pki "" debug: smtp: listen on IPv6:::1 port 25 flags 0x0 pki "" debug: pony: rsae_init debug: pony: rsae_init debug: pony: rsae_finish fatal: ssl_ctx_create: could not fake private key: No such file or directory warn: parent -> pony: pipe closed warn: lka -> pony: pipe closed warn: queue -> pony: pipe closed warn: control -> pony: pipe closed warn: ca -> pony: pipe closed warn: scheduler -> queue: pipe closed I'm not sure what it means by "fake private key". Also, will smtpd verify the remote TLS certificate by default? -- Hugo Osvaldo Barrera A: No, it doesn't make sense. Q: Should I include quotations *after* my reply?
pgpqtkabayko2.pgp
Description: PGP signature
