1 |
Markus Rennings schrieb: |
2 |
> Hallo, |
3 |
|
4 |
> Setz' mal in Postfix' main.cf die Option "smtpd_tls_loglevel = 2", da |
5 |
> müsste man mehr raus ersehen können. |
6 |
|
7 |
Mit dem Loglevel und smtpd -v: |
8 |
Jan 3 19:51:13 server postfix/smtpd[19479]: connection established |
9 |
Jan 3 19:51:13 server postfix/smtpd[19479]: master_notify: status 0 |
10 |
Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: resource |
11 |
Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: software |
12 |
Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: noanonymous |
13 |
Jan 3 19:51:13 server postfix/smtpd[19479]: connect from |
14 |
kohni.local[192.168.0.3] |
15 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: kohni.local: no |
16 |
match |
17 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: 192.168.0.3: no |
18 |
match |
19 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: kohni.local: no |
20 |
match |
21 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: 192.168.0.3: no |
22 |
match |
23 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostname: kohni.local ~? |
24 |
192.168.0.0/24 |
25 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostaddr: 192.168.0.3 ~? |
26 |
192.168.0.0/24 |
27 |
Jan 3 19:51:13 server postfix/smtpd[19479]: > kohni.local[192.168.0.3]: 220 |
28 |
jankoh.dyndns.org ESMTP Postfix (2.2.5) |
29 |
Jan 3 19:51:13 server postfix/smtpd[19479]: < kohni.local[192.168.0.3]: ????? |
30 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? CONNECT |
31 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? GET |
32 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? POST |
33 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: ?????: no match |
34 |
Jan 3 19:51:13 server postfix/smtpd[19479]: > kohni.local[192.168.0.3]: 502 |
35 |
Error: command not implemented |
36 |
Jan 3 19:51:13 server postfix/smtpd[19479]: smtp_get: EOF |
37 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostname: kohni.local ~? |
38 |
192.168.0.0/24 |
39 |
Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostaddr: 192.168.0.3 ~? |
40 |
192.168.0.0/24 |
41 |
Jan 3 19:51:13 server postfix/smtpd[19479]: lost connection after CONNECT |
42 |
from kohni.local[192.168.0.3] |
43 |
Jan 3 19:51:13 server postfix/smtpd[19479]: disconnect from |
44 |
kohni.local[192.168.0.3] |
45 |
Jan 3 19:51:13 server postfix/smtpd[19479]: master_notify: status 1 |
46 |
Jan 3 19:51:13 server postfix/smtpd[19479]: connection closed |
47 |
|
48 |
> Ansonsten kannst Du mit "openssl s_client -starttls smtp |
49 |
> -CApath /etc/postfix/CAcerts -connect localhost:25" (natürlich anpassen) |
50 |
> sehen, ob Postfix TLS richtig anbietet... |
51 |
|
52 |
Dir zuliebe mit Output: |
53 |
Jan 3 19:57:19 server postfix/smtpd[19487]: connect from |
54 |
kohni.local[192.168.0.3] |
55 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: kohni.local: no |
56 |
match |
57 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no |
58 |
match |
59 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: kohni.local: no |
60 |
match |
61 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no |
62 |
match |
63 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_hostname: kohni.local ~? |
64 |
192.168.0.0/24 |
65 |
Jan 3 19:57:19 server postfix/smtpd[19487]: match_hostaddr: 192.168.0.3 ~? |
66 |
192.168.0.0/24 |
67 |
Jan 3 19:57:19 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 220 |
68 |
jankoh.dyndns.org ESMTP Postfix (2.2.5) |
69 |
Jan 3 19:57:19 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]: |
70 |
STARTTLS |
71 |
Jan 3 19:57:19 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 220 |
72 |
Ready to start TLS |
73 |
Jan 3 19:57:19 server postfix/smtpd[19487]: setting up TLS connection from |
74 |
kohni.local[192.168.0.3] |
75 |
Jan 3 19:57:19 server postfix/smtpd[19487]: attr_clnt_connect: connected to |
76 |
private/tlsmgr |
77 |
Jan 3 19:57:19 server postfix/smtpd[19487]: send attr request = seed |
78 |
Jan 3 19:57:19 server postfix/smtpd[19487]: send attr size = 32 |
79 |
Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute: |
80 |
status |
81 |
Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: status |
82 |
Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute value: 0 |
83 |
Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute: |
84 |
seed |
85 |
Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: seed |
86 |
Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute value: |
87 |
OBJANybTZbaJdXigt9CLxkvwNahVl7tw98d3q6EncqY= |
88 |
Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute: |
89 |
(list terminator) |
90 |
Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: (end) |
91 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:before/accept |
92 |
initialization |
93 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv2/v3 read |
94 |
client hello A |
95 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv2/v3 read |
96 |
client hello B |
97 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read client |
98 |
hello A |
99 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write server |
100 |
hello A |
101 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write |
102 |
certificate A |
103 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write key |
104 |
exchange A |
105 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write server |
106 |
done A |
107 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 flush data |
108 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
109 |
client certificate A |
110 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
111 |
client certificate A |
112 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
113 |
client certificate A |
114 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read client key |
115 |
exchange A |
116 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
117 |
certificate verify A |
118 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
119 |
certificate verify A |
120 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
121 |
certificate verify A |
122 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read |
123 |
certificate verify A |
124 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read finished A |
125 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write change |
126 |
cipher spec A |
127 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write finished A |
128 |
Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 flush data |
129 |
Jan 3 19:57:19 server postfix/smtpd[19487]: TLS connection established from |
130 |
kohni.local[192.168.0.3]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits) |
131 |
Jan 3 19:57:24 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]: ehlo |
132 |
kohni.local |
133 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
134 |
250-jankoh.dyndns.org |
135 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
136 |
250-PIPELINING |
137 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
138 |
250-SIZE 10240000 |
139 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
140 |
250-VRFY |
141 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
142 |
250-ETRN |
143 |
Jan 3 19:57:24 server postfix/smtpd[19487]: match_list_match: kohni.local: no |
144 |
match |
145 |
Jan 3 19:57:24 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no |
146 |
match |
147 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: |
148 |
250-AUTH PLAIN NTLM LOGIN DIGEST-MD5 CRAM-MD5 |
149 |
Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 250 |
150 |
8BITMIME |
151 |
Jan 3 19:57:30 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]: quit |
152 |
Jan 3 19:57:30 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 221 |
153 |
Bye |
154 |
Jan 3 19:57:30 server postfix/smtpd[19487]: match_hostname: kohni.local ~? |
155 |
192.168.0.0/24 |
156 |
Jan 3 19:57:30 server postfix/smtpd[19487]: match_hostaddr: 192.168.0.3 ~? |
157 |
192.168.0.0/24 |
158 |
Jan 3 19:57:30 server postfix/smtpd[19487]: disconnect from |
159 |
kohni.local[192.168.0.3] |
160 |
Jan 3 19:57:30 server postfix/smtpd[19487]: master_notify: status 1 |
161 |
Jan 3 19:57:30 server postfix/smtpd[19487]: connection closed |
162 |
|
163 |
> HTH |
164 |
> Ciao, |
165 |
> Markus |
166 |
|
167 |
MfG Jan |
168 |
|
169 |
-- |
170 |
OpenPGP Public-Key Fingerprint: |
171 |
0E9B 4052 C661 5018 93C3 4E46 651A 7A28 4028 FF7A |