LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
LinkBack Search this Thread
Old 07-21-2009, 12:33 PM   #1
carlosinfl
Senior Member
 
Registered: May 2004
Location: Orlando, FL
Distribution: Debian
Posts: 2,895

Rep: Reputation: 73
Postfix / TLS Help


I am trying to get Postfix to work using SASL and TLS. Last week I configured Dovecot to utilize my Verisign SSL certificates for TLS on Imap4 which appears to be working perfect. Now I would like the same thing on the SMTP side for Postfix.

I followed this guide in order to 1st get SASL working. It appears to be working fine.

Code:
[root@mail ~]# telnet 127.0.0.1 25
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
220 mail.iamghost.com ESMTP
EHLO iamghost.com
250-mail.iamghost.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
AUTH PLAIN FB36s8djkwBzEwmJaz1jgGnaT=
235 2.0.0 Authentication successful
quit
221 2.0.0 Bye
So I can see that SASL authentication is working fine above...

Now when I try and get TLS working, I get an error from my client forcing TLS encryption while sending mail:

"Unable to connect to SMTP server via STARTLS since it does not offer STARTLS in EHLO response. Please verify your settings."

I am thinking the problem is my Verisign SSL certificates. Either Postfix can't access them because of the passphrase on my private key or something else is wrong. Does anyone know how I can self sign my own certificate I generate myself via OpenSSL? I am guessing I still need a CA for my self signed certificate.
 
Old 07-22-2009, 01:31 PM   #2
carlosinfl
Senior Member
 
Registered: May 2004
Location: Orlando, FL
Distribution: Debian
Posts: 2,895

Original Poster
Rep: Reputation: 73
This is resolved. Postfix was unable to use my SSL certificate because it was passphrase protected. I had to remove the passphrase from the server...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Postfix TLS support saif.sicsr Linux - Server 0 02-24-2009 05:54 PM
Problem with TLS in Postfix norbert_999 Linux - Server 11 06-10-2008 07:25 AM
Postfix TLS and SMTP i_nomad Linux - Security 2 05-20-2008 07:28 AM
Postfix + Tls + Sasl riotpunk Linux - Server 0 10-30-2007 08:11 PM
Postfix TLS error grant-skywalker Debian 3 09-11-2006 01:11 PM


All times are GMT -5. The time now is 01:38 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration