I do realize that this thread probably shouldn't be continued, however I
see some gross miss-statements here that need correcting so that someone
browsing the thread won't be mislead by them at a later time...
On 06/16/2013 01:58 AM, Benny Pedersen wrote:
smtpd_tls_auth_only (default: no)
Am Samstag, 15. Juni 2013, 04:03:44 schrieb Benny Pedersen:
Jan Kohnert skrev den 2013-06-15 03:58:
Well, no, it disables AUTH without tls/ssl but not STARTTLS, IIRC.
starttls have nothing to do with auth or not
Come on, read the documentation:
Jan Kohnert skrev den 2013-06-15 10:57:
http://www.postfix.org/postconf.5.html#smtpd_tls_auth_only
do i need to tell it in --verbose ?
starttls have nothing to do with auth, just becurse this option have
tls and auth in one line does not make tls/ssl needed to make auth work
--
senders
On 06/15/2013 12:13 PM, Benny Pedersen wrote:
Jan Kohnert skrev den 2013-06-15 10:57:
http://www.postfix.org/postconf.5.html#smtpd_tls_auth_only
do i need to tell it in --verbose ?
starttls have nothing to do with auth, just becurse this option have
tls and auth in one line does not make
Jeroen Geilman skrev den 2013-06-15 15:35:
Quoted from the above documentation:
smtpd_tls_auth_only (default: no)
When TLS encryption is optional in the Postfix SMTP server,
do not announce or accept SASL authentication over unencrypted
connections.
it does not say it disables
Benny Pedersen:
Jeroen Geilman skrev den 2013-06-15 15:35:
Quoted from the above documentation:
smtpd_tls_auth_only (default: no)
When TLS encryption is optional in the Postfix SMTP server,
do not announce or accept SASL authentication over unencrypted
connections.
wie...@porcupine.org skrev den 2013-06-15 16:13:
The server does not announce or accept AUTH, therefore AUTH it is
disabled.
auth does not need starttls, if auth is not anounced then auth is
disabled
--
senders that put my email into body content will deliver it to my own
trashcan, so if
smtpd_tls_auth_only (default: no)
When TLS encryption is optional in the Postfix SMTP server,
do not announce or accept SASL authentication over unencrypted
connections.
Benny Pedersen:
auth does not need starttls, if auth is not anounced then auth is
disabled
AUTH requires
Hi everyone,
I just setup postfix on my server but I'm having a problem with TLS. I
have TLS configured, there are no errors in the log, but the server does
not announce TLS support.Here is the output relevant output from
'postconf -n', the full output is at the end of the message:
Nabil Alsharif skrev den 2013-06-15 01:57:
please disable html
smtp_tls_note_starttls_offer = yes
smtp_use_tls = yes
smtp_ is for sending
smtpd_banner = $myhostname ESMTP
smtpd_recipient_restrictions = permit_mynetworks
reject_unauth_destination
smtpd_tls_CAfile =
Nabil Alsharif:
Hi everyone,
I just setup postfix on my server but I'm having a problem with TLS. I
have TLS configured, there are no errors in the log, but the server does
not announce TLS support.Here is the output relevant output from
'postconf -n', the full output is at the end of
On 06/15/2013 02:38 AM, Benny Pedersen wrote:
Nabil Alsharif skrev den 2013-06-15 01:57:
please disable html
My bad..
smtp_tls_note_starttls_offer = yes
smtp_use_tls = yes
smtp_ is for sending
Ok so these two options are telling Postfix to check if STARTTLS is
offered by the peer and
On 06/15/2013 02:39 AM, Wietse Venema wrote:
Have you looked at all the warning messages in the maillog file?
Yes I have, there are no errors or warnings. 'postfix check' doesn't
return any warnings or errors either.
by smtpd_tls_security_level.
Like I saidthe server does not announce STARTTLS:
What you showed us should have announced STARTTLS. I would guess the
problem is related to the single file certificate+key+CAs. Since you
mentioned upthread that no errors are logged, check your syslogd (try
restarting
Nabil Alsharif skrev den 2013-06-15 02:59:
smtp_tls_note_starttls_offer = yes
smtp_use_tls = yes
smtp_ is for sending
Ok so these two options are telling Postfix to check if STARTTLS is
offered by the peer and use TLS if available, right?
correct
smtpd_banner = $myhostname ESMTP
/dev/rob0 skrev den 2013-06-15 03:22:
What you showed us should have announced STARTTLS. I would guess the
problem is related to the single file certificate+key+CAs. Since you
mentioned upthread that no errors are logged, check your syslogd (try
restarting it.) These errors would be logged
Am Samstag, 15. Juni 2013, 03:45:02 schrieb Benny Pedersen:
Nabil Alsharif skrev den 2013-06-15 02:59:
smtpd_tls_auth_only = yes
this disable starttls since we already is using ssl/tls now
huh? This part I don't quite understand. How are we disabling TLS?
Where was it enabled
Jan Kohnert skrev den 2013-06-15 03:58:
Well, no, it disables AUTH without tls/ssl but not STARTTLS, IIRC.
starttls have nothing to do with auth or not
auth users can still send plain passwords over unsecured smtpd client
connections, starttls just secure there passwords, so tcpdumpers cant
On Sat, Jun 15, 2013 at 03:45:02AM +0200, Benny Pedersen wrote:
Nabil Alsharif skrev den 2013-06-15 02:59:
smtp_tls_note_starttls_offer = yes
smtp_use_tls = yes
smtp_ is for sending
Ok so these two options are telling Postfix to check if STARTTLS
is offered by the peer and use TLS if
/dev/rob0 skrev den 2013-06-15 05:27:
I think the OP will have to fix the logging problem before we can
solve this issue.
it would be more relative simple to use more default settings, if OP is
unsure what to do
sorry if i write it such it could be missunderstandelble :(
--
senders that
20 matches
Mail list logo
