[BlueOnyx:17809] Re: Base Email Update And dnsexit.com Mail Relay
Christoph Schneeberger
cschnee at box.telemedia.ch
Tue Jun 16 05:21:58 -05 2015
On 06/16/2015 12:28 AM, Michael Aronoff wrote:
> Michael Wrote:
>> They updated their OpenSSL and now their Sendmail and their OpenSSL
> disagree about the minimum bits
>> needed for Diffie Hellman exhanges in ciphers that need DH.
> I found the following if you have problems like this where the remote server
> is giving problems. You can tell sendmail to not do TLS connections with
> specific servers by using the following in the /etc/mail/access file.
>
> Try_TLS:badserverdomain.com NO
>
> Then run:
> makemap hash /etc/mail/access.db < /etc/mail/access
>
> This appears to have fixed the problem for me with one pain in the butt
> remote server.
>
Thanks Michael Aronoff for this tip, that was a great help in getting a
few thousand mails out of the queue. Now I have to convince the target
server owners to upgrade their systems.
A little addition: "cd /etc/mail; make" is enough on most systems to
regenerate all map files.
And the greatest of all: If you put the lines at the right place,
BlueOnyx will retain them as I found.
Also with the new glasses I wear today, I can see the Email menu again :-)
Cheers,
Christoph
More information about the Blueonyx
mailing list