Re: [qmailtoaster] New Error on SMTP

2021-06-08 Thread Jeff Koch 
You are right - that's what we'll do. The port 26 thing came about 
decades ago when traveling users would find port 25 blocked.


Jeff

On 6/8/2021 5:12 PM, Remo Mattei wrote:

Why not use 465 then at this point?

Remo

On Jun 8, 2021, at 10:55 AM, Jeff Koch > wrote:


Hi Eric and list:

Thanks for the suggestion and for thinking about this.  In the 
meantime we figured out the problem. We've isolated the issue to a 
local ISP operating under the names Netlife/Ecuanet/Telconet. All 
users with issues are using this ISP. Changing the smtp port to 26 
solves the problem - which on our mailservers is prerouted and 
redirected to 587. Looks like the ISP is doing something on port 587.


Weird

Jeff



On 6/8/2021 4:11 PM, Eric Broch wrote:


If you're using spamdyke it will do TLS encryption. Disable it. In 
/etc/spamdyke/spamdyke.conf do the following:


# QMT does encryption/decryption when cert file is commented
#tls-certificate-file=/var/qmail/control/servercert.pem
tls-level=smtp

On 6/8/2021 12:19 PM, Jeff Koch wrote:


Hi

More info.

From some locations telnetting to port 587 on this mailserver and 
then entering EHLO gets a list of services that
includes STARTTLS and from other locations STARTTLS and PIPELINING 
are not shown. Any idea why that would happen?

What controls the list of services announced to email clients?

Jeff

Re: [qmailtoaster] New Error on SMTP

2021-06-08 Thread Eric Broch 

"Weird"

Yes, maybe they're intercepting TLS. One hates to think the worst, but...

On 6/8/2021 2:55 PM, Jeff Koch wrote:

Hi Eric and list:

Thanks for the suggestion and for thinking about this.  In the 
meantime we figured out the problem. We've isolated the issue to a 
local ISP operating under the names Netlife/Ecuanet/Telconet. All 
users with issues are using this ISP. Changing the smtp port to 26 
solves the problem - which on our mailservers is prerouted and 
redirected to 587.  Looks like the ISP is doing something on port 587.


Weird

Jeff



On 6/8/2021 4:11 PM, Eric Broch wrote:


If you're using spamdyke it will do TLS encryption. Disable it. In 
/etc/spamdyke/spamdyke.conf do the following:


# QMT does encryption/decryption when cert file is commented
#tls-certificate-file=/var/qmail/control/servercert.pem
tls-level=smtp

On 6/8/2021 12:19 PM, Jeff Koch wrote:


Hi

More info.

From some locations telnetting to port 587 on this mailserver and 
then entering EHLO gets a list of services that
includes STARTTLS and from other locations STARTTLS and PIPELINING 
are not shown. Any idea why that would happen?

What controls the list of services announced to email clients?

Jeff

Re: [qmailtoaster] New Error on SMTP

2021-06-08 Thread Remo Mattei 
Why not use 465 then at this point?

Remo 

> On Jun 8, 2021, at 10:55 AM, Jeff Koch  wrote:
> 
> Hi Eric and list:
> 
> Thanks for the suggestion and for thinking about this.  In the meantime we 
> figured out the problem. We've isolated the issue to a local ISP operating 
> under the names Netlife/Ecuanet/Telconet. All users with issues are using 
> this ISP. Changing the smtp port to 26 solves the problem - which on our 
> mailservers is prerouted and redirected to 587.  Looks like the ISP is doing 
> something on port 587.
> 
> Weird 
> 
> Jeff
> 
> 
> 
> On 6/8/2021 4:11 PM, Eric Broch wrote:
>> If you're using spamdyke it will do TLS encryption. Disable it. In 
>> /etc/spamdyke/spamdyke.conf do the following:
>> 
>> # QMT does encryption/decryption when cert file is commented
>> #tls-certificate-file=/var/qmail/control/servercert.pem
>> tls-level=smtp
>> 
>> 
>> On 6/8/2021 12:19 PM, Jeff Koch wrote:
>>> 
>>> Hi
>>> 
>>> More info. 
>>> 
>>> From some locations telnetting to port 587 on this mailserver and then 
>>> entering EHLO gets a list of services that 
>>> includes STARTTLS and from other locations STARTTLS and PIPELINING are not 
>>> shown. Any idea why that would happen? 
>>> What controls the list of services announced to email clients?
>>> 
>>> Jeff
>>> 
>>> 
>>> 
>>> 
>>> 
>>> 
>>> 
>>> 
>>> 
> 



smime.p7s
Description: S/MIME cryptographic signature

Re: [qmailtoaster] New Error on SMTP

2021-06-08 Thread Jeff Koch 

Hi Eric and list:

Thanks for the suggestion and for thinking about this.  In the meantime 
we figured out the problem. We've isolated the issue to a local ISP 
operating under the names Netlife/Ecuanet/Telconet. All users with 
issues are using this ISP. Changing the smtp port to 26 solves the 
problem - which on our mailservers is prerouted and redirected to 587.  
Looks like the ISP is doing something on port 587.


Weird

Jeff



On 6/8/2021 4:11 PM, Eric Broch wrote:


If you're using spamdyke it will do TLS encryption. Disable it. In 
/etc/spamdyke/spamdyke.conf do the following:


# QMT does encryption/decryption when cert file is commented
#tls-certificate-file=/var/qmail/control/servercert.pem
tls-level=smtp

On 6/8/2021 12:19 PM, Jeff Koch wrote:


Hi

More info.

From some locations telnetting to port 587 on this mailserver and 
then entering EHLO gets a list of services that
includes STARTTLS and from other locations STARTTLS and PIPELINING 
are not shown. Any idea why that would happen?

What controls the list of services announced to email clients?

Jeff

Re: [qmailtoaster] New Error on SMTP

2021-06-08 Thread Eric Broch 
If you're using spamdyke it will do TLS encryption. Disable it. In 
/etc/spamdyke/spamdyke.conf do the following:


# QMT does encryption/decryption when cert file is commented
#tls-certificate-file=/var/qmail/control/servercert.pem
tls-level=smtp

On 6/8/2021 12:19 PM, Jeff Koch wrote:


Hi

More info.

From some locations telnetting to port 587 on this mailserver and then 
entering EHLO gets a list of services that
includes STARTTLS and from other locations STARTTLS and PIPELINING are 
not shown. Any idea why that would happen?

What controls the list of services announced to email clients?

Jeff

[qmailtoaster] New Error on SMTP

2021-06-08 Thread Jeff Koch 


Hi

More info.

From some locations telnetting to port 587 on this mailserver and then 
entering EHLO gets a list of services that
includes STARTTLS and from other locations STARTTLS and PIPELINING are 
not shown. Any idea why that would happen?

What controls the list of services announced to email clients?

Jeff

Re: [qmailtoaster] New error on SMTP connections with Macs

2021-06-08 Thread Jeff Koch 
I'll ask them. We also just changed the SMTP Greeting from the very long 
one with the toaster version number from the stock Toaster. Now it just 
says 'SMTP Server'.  Maybe the length of the greeting was confusing the 
email client.


Jeff

On 6/8/2021 11:04 AM, Eric Broch wrote:


It looks correct.

Can you provide the outlook settings and version as well as the mac?

Eric

On 6/8/2021 8:56 AM, Jeff Koch wrote:

Hi Eric:

This server uses V 1.03-2.qt.e17 - there have been no upgrades for at 
least two years. Does the telnet response in the screen shot look 
correct?


Jeff

On 6/8/2021 10:51 AM, Eric Broch wrote:


What version of qmail

Did it start after an upgrade?


On 6/8/2021 8:43 AM, Jeff Koch wrote:

Hi List:

Our qmail toaster users have just started reporting an SMTP sending 
error. These users are mostly sending mail on Mac's but this was 
also reported by one user sending with Outlook.


The error reads:
-
Send Message Error

Sending of the message failed.
An error occurred while sending mail: Unable to establish
a secure link with Outgoing server (SMTP)
'...' using STARTTLS since it doesn't
advertise that feature. Switch off STARTTLS for that
server or contact your service provider.
---

Checking the mailserver by telnetting to port 587 it clearly 
advertises STARTTLS:




Regards, Jeff Koch

Re: [qmailtoaster] New error on SMTP connections with Macs

2021-06-08 Thread Eric Broch 

It looks correct.

Can you provide the outlook settings and version as well as the mac?

Eric

On 6/8/2021 8:56 AM, Jeff Koch wrote:

Hi Eric:

This server uses V 1.03-2.qt.e17 - there have been no upgrades for at 
least two years. Does the telnet response in the screen shot look correct?


Jeff

On 6/8/2021 10:51 AM, Eric Broch wrote:


What version of qmail

Did it start after an upgrade?


On 6/8/2021 8:43 AM, Jeff Koch wrote:

Hi List:

Our qmail toaster users have just started reporting an SMTP sending 
error. These users are mostly sending mail on Mac's but this was 
also reported by one user sending with Outlook.


The error reads:
-
Send Message Error

Sending of the message failed.
An error occurred while sending mail: Unable to establish
a secure link with Outgoing server (SMTP)
'...' using STARTTLS since it doesn't
advertise that feature. Switch off STARTTLS for that
server or contact your service provider.
---

Checking the mailserver by telnetting to port 587 it clearly 
advertises STARTTLS:




Regards, Jeff Koch

Re: [qmailtoaster] New error on SMTP connections with Macs

2021-06-08 Thread Jeff Koch 

Hi Eric:

This server uses V 1.03-2.qt.e17 - there have been no upgrades for at 
least two years. Does the telnet response in the screen shot look correct?


Jeff

On 6/8/2021 10:51 AM, Eric Broch wrote:


What version of qmail

Did it start after an upgrade?


On 6/8/2021 8:43 AM, Jeff Koch wrote:

Hi List:

Our qmail toaster users have just started reporting an SMTP sending 
error. These users are mostly sending mail on Mac's but this was also 
reported by one user sending with Outlook.


The error reads:
-
Send Message Error

Sending of the message failed.
An error occurred while sending mail: Unable to establish
a secure link with Outgoing server (SMTP)
'...' using STARTTLS since it doesn't
advertise that feature. Switch off STARTTLS for that
server or contact your service provider.
---

Checking the mailserver by telnetting to port 587 it clearly 
advertises STARTTLS:




Regards, Jeff Koch

Re: [qmailtoaster] New error on SMTP connections with Macs

2021-06-08 Thread Eric Broch 

What version of qmail

Did it start after an upgrade?


On 6/8/2021 8:43 AM, Jeff Koch wrote:

Hi List:

Our qmail toaster users have just started reporting an SMTP sending 
error. These users are mostly sending mail on Mac's but this was also 
reported by one user sending with Outlook.


The error reads:
-
Send Message Error

Sending of the message failed.
An error occurred while sending mail: Unable to establish
a secure link with Outgoing server (SMTP)
'...' using STARTTLS since it doesn't
advertise that feature. Switch off STARTTLS for that
server or contact your service provider.
---

Checking the mailserver by telnetting to port 587 it clearly 
advertises STARTTLS:




Regards, Jeff Koch

[qmailtoaster] New error on SMTP connections with Macs

2021-06-08 Thread Jeff Koch 

Hi List:

Our qmail toaster users have just started reporting an SMTP sending 
error. These users are mostly sending mail on Mac's but this was also 
reported by one user sending with Outlook.


The error reads:
-
Send Message Error

Sending of the message failed.
An error occurred while sending mail: Unable to establish
a secure link with Outgoing server (SMTP)
'...' using STARTTLS since it doesn't
advertise that feature. Switch off STARTTLS for that
server or contact your service provider.
---

Checking the mailserver by telnetting to port 587 it clearly advertises 
STARTTLS:




Regards, Jeff Koch