NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2002-07

From: Alexander Skwar (lists.ASkwarDigitalProjects.com)
Date: Sat Jul 06 2002 - 06:46:34 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

How can I force postfix to use TLS, even when it thinks that a
certificate is bad? I've setup a server somewhere and don't have a
valid certificate; I've only got a self signed cert. When postfix tries
to relay mail thru this host, it breaks. I get this in the logs:

Jul 6 13:40:00 teich postfix/pickup[21159]: B7E0653C19: uid=501 from=<askwar>
Jul 6 13:40:00 teich postfix/cleanup[21166]: B7E0653C19: message-id=<20020706114000.B7E0653C19teich.garten.digitalprojects.com>
Jul 6 13:40:00 teich postfix/nqmgr[21160]: B7E0653C19: from=<askwardigitalprojects.com>, size=694, nrcpt=1 (queue active)
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:before/connect initialization
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:SSLv2/v3 write client hello A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv2/v3 read server hello A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv3 read server hello A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv3 read server hello A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:SSLv3 read server hello A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv3 read server certificate A
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv3 read server certificate A
Jul 6 13:40:00 teich postfix/smtp[21168]: Peer cert verify depth=0 /C=AU/ST=Some-State/O=Internet Widgits Pty Ltd
Jul 6 13:40:00 teich postfix/smtp[21168]: verify error:num=18:self signed certificate
Jul 6 13:40:00 teich postfix/smtp[21168]: verify return:0
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL3 alert write:fatal:unknown CA
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect:error in SSLv3 read server certificate B
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL_connect error to smtp.host: -1
Jul 6 13:40:00 teich postfix/smtp[21168]: 21168:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed:s3_clnt.c:822:
Jul 6 13:40:00 teich postfix/smtp[21168]: SSL session removed
Jul 6 13:40:00 teich postfix/smtp[21168]: B7E0653C19: to=<ASkwar-Cron-AusgabenDigitalProjects.com>, relay=smtp.host[123.123.123.123], delay=0, status=deferred (Could not start TLS: client failure)

Thanks,

Alexander Skwar

-- 
How to quote:	http://learn.to/quote (german) http://quote.6x.to (english)
Homepage:	http://www.iso-top.de      |    Jabber: askwara-message.de
   iso-top.de - Die günstige Art an Linux Distributionen zu kommen
                       Uptime: 6 days 21 hours 3 minutes
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]