On Fri, Mar 26, 2004 at 09:54:34AM -0800, Zachary Denison wrote: > > I am using qmail-ldap-1.03-20040301a and I configure > my Makefile as such: > > > LDAPFLAGS=-DEXTERNAL_TODO -DALTQUEUE -DSMTPEXECCHECK > -DQUOTATRASH > LDAPLIBS=-L/usr/lib -lldap -llber > LDAPINCLUDES=-I/usr/include > TLS=-DTLS_SMTPD > TLSINCLUDES=-I/usr/include > TLSLIBS=-L/usr/lib -lssl -lcrypto > OPENSSLBIN=/usr/bin/openssl > > when I 'make setup check' everthing works fine, I also > generate a certificate. However my client complains > that the server doesn't support SSL. When I check > from the command line, I see that in fact ssl is not > being reported as supported: > > when I telnet to port 25 and issue ehlo I see only: > > 250-PIPELINING > 250-SIZE 0 > 250 8BITMIME > > and I do not see the '250-STARTTLS' like I should. ( > I did also try forcing the #define of TLS_SMTPD, but > then the compiler warns that it is being redefined, so > I am not sure what is going on). > > I have also set SMTPAUTH to TLSREQUIRED in the > qmail-smtpd.rules file. > > Is there anything else one needs to do, like perhaps > set some environment variables? >
Is the cert readable by qmail-smtpd (normaly run as qmaild)? e.g. ls /var/qmail/control/cert.pem -rw-r----- 1 qmaild qmail 1827 Nov 27 20:39 /var/qmail/control/cert.pem -- :wq Claudio
