7/30/2023 0 Comments Mamp pro postfix gmailīut still, the GMail reception problem continued. I first set about updating OpenSSL (which was OpenSSL 1.0.1e-fips, the latest available via yum) I did as instructed in this article and resultantly the box runs OpenSSL 1.0.2p. So why wasn't it able to negotiate a cipher? Smtp_tls_mandatory_protocols = !SSLv2, !SSLv3 Postconf -d | grep cipherlist had this fairly short list of exclusions: tls_export_cipherlist = eNULL:!aNULLĪnd TLS protocols were fairly lenient: smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3 Some of the checks I ran produced results which seemed to contradict what I expected I read up on common causes of the 1408A0C1 postfix error but none seemed to quite apply to this scenario. TLS was already enabled with an (albeit self-signed) server certificate clients were connecting successfully to send and receive mail through IMAP/POP with SASL. Increasing the TLS logging verbosity: Aug 23 21:56:15 server1 postfix/smtpd: initializing the server-side TLS engineĪug 23 21:56:15 server1 postfix/smtpd: connect from Īug 23 21:56:15 server1 postfix/smtpd: setting up TLS connection from Īug 23 21:56:15 server1 postfix/smtpd: : TLS cipher list 23 21:56:15 server1 postfix/smtpd: SSL_accept:before/accept initializationĪug 23 21:56:15 server1 postfix/smtpd: SS元 alert write:fatal:handshake failureĪug 23 21:56:15 server1 postfix/smtpd: SSL_accept:error in SSLv3 read client hello CĪug 23 21:56:15 server1 postfix/smtpd: SSL_accept error from : -1Īug 23 21:56:15 server1 postfix/smtpd: warning: TLS library problem: 18103:error:1408A0C1:SSL routines:SS元_GET_CLIENT_HELLO:no shared cipher:s3_srvr.c:1387:Īug 23 21:56:15 server1 postfix/smtpd: lost connection after STARTTLS from Īug 23 21:56:15 server1 postfix/smtpd: disconnect from SMTP server (i.e., GMail) resulted in this: Aug 23 19:34:29 server1 postfix/smtpd: connect from Īug 23 19:34:29 server1 postfix/smtpd: setting up TLS connection from Īug 23 19:34:29 server1 postfix/smtpd: SSL_accept error from : -1Īug 23 19:34:29 server1 postfix/smtpd: warning: TLS library problem: 7659:error:1408A0C1:SSL routines:SS元_GET_CLIENT_HELLO:no shared cipher:s3_srvr.c:1387:Īug 23 19:34:29 server1 postfix/smtpd: lost connection after STARTTLS from Īug 23 19:34:29 server1 postfix/smtpd: disconnect from I've just had to look at a CentOS 6 server running Postfix 2.6.6 which was able to send emails to everyone, but could not receive them from GMail (and a few other MTAs) due to incoming TLS negotiation problems.Ī connection from a.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |