Hal, It is dependant on the other end's SSL capabilities. If it is capable, then it SSL is attempted because your end *is* capable. Then it fails because there is no SSL keys.
The default config has SSL on, but if you follow the install instructions, it says *must* create keys. In which case it would all work. But most of us read that bit and say to ourselves; "I don't want/need SSL so I won't bother with that bit". This is where it falls apart. (My view is that if xmail does not find SSL keys, then it should not advertise SSL/TLS as a capability.) Perhaps, at startup time, if xmail were to popup a message stating that certain dependencies were not met, then the administrator would be notified before emails are bounced and the logs analysed some time later. Note the EnableXXXX-TLS settings are for inbound connections, while SMTP-TLS is for outbound connections. I agree the defaults could be consistent. Rob :-) _________________________________________________ Note To Self: Remember to put something witty here later... -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Hal Dell Sent: Wednesday, January 24, 2007 12:38 PM To: xmail@xmailserver.org Subject: [xmail] Re: I'm trying to migrate to V1.24 Rob- I was just about to try that... Why does the default config cause xMail SMTP to fail to receive some eMails and not others? I looked up the server.tab variables --> http://www.xmailserver.org/Readme.html#server_tab_variables [SMTP-TLS] Ask XMail to try to negotiate TLS sessions with remote SMTP servers. If set to ``0'' XMail will never try to use STARTTLS. If set to ``1'', XMail will try to establish a TLS link, and will fall back to non-encrypted link in case the remote server does not support TLS. If set to ``2'', XMail will try to establish a TLS link and will give up in case this will fail. Default is ``0''. [EnableCTRL-TLS] Enable CTRL TLS negotiation (default ``1''). [EnablePOP3-TLS] Enable POP3 TLS (STLS) negotiation (default ``1''). [EnableSMTP-TLS] Enable SMTP TLS (STARTTLS) negotiation (default ``1''). Note that in the v1.24 default server.tab file the above values are commented out -- maybe the defaults should be ZERO across the board. The way I interpreted the change log section about SSL was that if you wanted this feature to work you needed to follow the setup instructions. Can the xMail application defaults be changed or can the defaults in the server.tab be changed so that a standard install without SSL will work? Thanks for the help, Hal... -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rob Arends Sent: Tuesday, January 23, 2007 7:36 PM To: xmail@xmailserver.org Subject: [xmail] Re: I'm trying to migrate to V1.24 TO ANY ONE THAT IS MIGRATING TO 1.24 Please either: 1. configure the crypto keys according to the doco. Or 2. add these lines to your server.tab "SMTP-TLS"[tab]"0"[crlf] "EnableCTRL-TLS"[tab]"0"[crlf] "EnableSMTP-TLS"[tab]"0"[crlf] "EnablePOP3-TLS"[tab]"0"[crlf] You will get "SMTP=ESSL" errors otherwise. As for your other options I don't know - someone else will have to answer this. Rob :-) - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED] - To unsubscribe from this list: send the line "unsubscribe xmail" in the body of a message to [EMAIL PROTECTED] For general help: send the line "help" in the body of a message to [EMAIL PROTECTED]
