I'm currently testing out migrating to postfix 3.0.3. However, LMTP
delivery is failing due to:
Nov 22 20:40:56 zre-ldap002 postfix/lmtp[20350]: SSL_connect error to
zre-ldap002.eng.zimbra.com[10.137.242.52]:7025: -1
Nov 22 20:40:56 zre-ldap002 postfix/lmtp[20350]: warning: TLS library
problem: error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert
handshake failure:s23_clnt.c:757:
Nov 22 20:40:56 zre-ldap002 postfix/lmtp[20350]: 7B8A411607DC:
to=<testus...@zre-ldap002.eng.zimbra.com>,
relay=zre-ldap002.eng.zimbra.com[10.137.242.52]:7025, delay=0.04,
delays=0.03/0.01/0.01/0, dsn=4.7.5, status=deferred (Cannot start TLS:
handshake failure)
Nov 22 20:40:56 zre-ldap002 postfix/lmtp[20350]: 7B8A411607DC:
to=<testus...@zre-ldap002.eng.zimbra.com>,
relay=zre-ldap002.eng.zimbra.com[10.137.242.52]:7025, delay=0.04,
delays=0.03/0.01/0.01/0, dsn=4.7.5, status=deferred (Cannot start TLS:
handshake failure)
This seems odd to me, because I have:
lmtp_tls_security_level = may
On my 2.11.4 postfix systems, with lmtp_tls_security_level set to may,
deliver works fine even though startTLS is not enabled. I.e., this seems
to be a regression since 2.11.4
Setting lmtp_tls_security_level to none allows mail delivery to succeed.
--Quana
--
Quanah Gibson-Mount
Platform Architect
Zimbra, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration