title says it. i have a self-signed cert that i am using for tls on a postfix server, and i want to have other linux machines be able to mail script output via mailx and using this one postfix machine.
it's giving me this:
Code:
host certificate does not match "172.16.16.3"
smtp-server: 503 5.5.1 Error: authentication not enabled
where 172.16.16.3 is the mail server, even though i enabled tls in /etc/mail.rc:
Code:
.
.
.
set smtp=172.16.16.3:25
set smtp-use-starttls
set ssl-verify=warn
set ssl-auth=login
set ssl-ca-file=/usr/share/ca-certificates/cacert.pem
set ssl-key=/usr/share/ca-certificates/key.pem
set smtp-auth-user=<<EMAIL>>
set smtp-auth-password="<<PASS>>"
where cacert.pem is my self-signed CA and key.pem is the cert key.
logs from the mail server show this:
Code:
Jun 19 17:02:48 pLAN9-Server2 postfix/smtpd[13666]: connect from pLAN9-Server1.pLAN9.site[172.16.16.2]
Jun 19 17:02:48 pLAN9-Server2 postfix/smtpd[13666]: lost connection after AUTH from pLAN9-Server1.pLAN9.site[172.16.16.2]
Jun 19 17:02:48 pLAN9-Server2 postfix/smtpd[13666]: disconnect from pLAN9-Server1.pLAN9.site[172.16.16.2]
so it looks like the problem is that the client is not trusting the cert, apparently because "host certificate does not match 172.16.16.3". What does that mean, and is there a way for mailx to ignore it and carry on?
thanks.