Re: Can postfix work with a TLS, authenticated smtp relay server?

Fri, 10 Sep 2010 03:18:26 -0700 

* Richard Chapman <rich...@aardvark.com.au>:
>  OK. I'm making some progress here:
> 
> After attempting a sasl/tls connection to smtp.gmail.com I get the
> following in the logs:
> 
> Sep 10 17:12:32 C5 postfix/postfix-script: starting the Postfix mail system
> Sep 10 17:12:32 C5 postfix/master[20209]: daemon started -- version 2.3.3, 
> configuration /etc/postfix
> Sep 10 17:13:07 C5 postfix/smtpd[20273]: connect from unknown[192.168.0.166]
> Sep 10 17:13:07 C5 postfix/smtpd[20273]: 9975E34E0002: 
> client=unknown[192.168.0.166], sasl_method=PLAIN, sasl_username=richard
> Sep 10 17:13:07 C5 postfix/cleanup[20277]: 9975E34E0002: 
> message-id=<4c89f6a0.4020...@aardvark.com.au>
> Sep 10 17:13:07 C5 postfix/qmgr[20211]: 9975E34E0002: 
> from=<rchap...@aardvark.com.au>, size=621, nrcpt=1 (queue active)
> Sep 10 17:13:07 C5 postfix/smtpd[20273]: disconnect from 
> unknown[192.168.0.166]
> Sep 10 17:13:10 C5 postfix/smtp[20278]: certificate verification failed for 
> smtp.gmail.com: num=20:unable to get local issuer certificate
> Sep 10 17:13:10 C5 postfix/smtp[20278]: certificate verification failed for 
> smtp.gmail.com: num=27:certificate not trusted
> Sep 10 17:13:10 C5 postfix/smtp[20278]: warning: SASL authentication failure: 
> No worthy mechs found

Please read SASL_README for that error message.

p...@rick

> Sep 10 17:13:11 C5 postfix/smtp[20278]: 9975E34E0002: 
> to=<chapman.rich...@gmail.com>, relay=smtp.gmail.com[72.14.213.109]:587, 
> delay=3.4, delays=0.02/0.05/3.3/0, dsn=4.7.0, status=deferred (SASL 
> authentication failed; cannot authenticate to server 
> smtp.gmail.com[72.14.213.109]: no mechanism available)
> 
> 
> Can anyone advise me on the best way to enable trust for the google 
> certificates which (I think) use an equifax CA. I am running a fairly 
> standard Centos 5.5 system - which probably doesn't have root certificates 
> installed by default.
> 
> 
> hanks
> 
> Richard.
> 
> 

-- 
All technical questions asked privately will be automatically answered on the
list and archived for public access unless privacy is explicitely required and
justified.

saslfinger (debugging SMTP AUTH):
<http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>

Reply via email to