[BlueOnyx:26508] Re: SSL error when receiving mail from GMAIL
Larry Smith
lesmith at ecsis.net
Sat Sep 23 13:28:28 -05 2023
Ceelie,
Hmmm, not sure this will every work - and if it does work with
Google it will break most other mail servers that try to talk to you.
Port 25 is the original email port (sendmail) and is no auth, no SSL/TLS
on purpose. As defined by the IETF, port 465 is the SSL/TLS port for
sendmail, and port 587 is the authenticated, with SSL/TLS port.
Not withstanding that, your error is no acceptable cipher for you
and gmail to agree upon. Port 443 is web (http / Apache) and postfix
is mail. Is it possible that you email is not configured to use the
keys you created??
--
Larry Smith
lesmith at ecsis.net
On Sat September 23 2023 13:09, Ceelie, Arie (VodafoneZiggo) via Blueonyx
wrote:
> Addressed this issue some time ago. I tried LetsEncrypt and it works
> flawless on port 443, but how do I set it for port 25?
>
> Error log:
>
> Sep 23 18:57:19 www postfix/smtpd[249156]: connect from
> mail-yw1-f175.google.com[209.85.128.175] Sep 23 18:57:19 www
> postfix/smtpd[249156]: TLS SNI ceelie.info from
> mail-yw1-f175.google.com[209.85.128.175] not matched, using default chain
> Sep 23 18:57:19 www postfix/smtpd[249156]: SSL_accept error from
> mail-yw1-f175.google.com[209.85.128.175]: -1 Sep 23 18:57:19 www
> postfix/smtpd[249156]: warning: TLS library problem: error:1417A0C1:SSL
> routines:tls_post_process_client_hello:no shared
> cipher:ssl/statem/statem_srvr.c:2285: Sep 23 18:57:19 www
> postfix/smtpd[249156]: lost connection after STARTTLS from
> mail-yw1-f175.google.com[209.85.128.175] Sep 23 18:57:19 www
> postfix/smtpd[249156]: disconnect from
> mail-yw1-f175.google.com[209.85.128.175] ehlo=1 starttls=0/1 commands=1/2
>
>
>
> C2 VodafoneZiggo Internal
More information about the Blueonyx
mailing list