Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user-de

From: Jan Kohnert <nospam001-lists@×××××××××××××.org>
To: gentoo-user-de@l.g.o
Subject: Re: [gentoo-user-de] ssmtp will kein TLS mehr :-(
Date: Tue, 03 Jan 2006 19:02:13
Message-Id: 200601032000.27171.nospam001-lists@jankoh.dyndns.org
In Reply to: Re: [gentoo-user-de] ssmtp will kein TLS mehr :-( by Markus Rennings
1 Markus Rennings schrieb:
2 > Hallo,
3
4 > Setz' mal in Postfix' main.cf die Option "smtpd_tls_loglevel = 2", da
5 > müsste man mehr raus ersehen können.
6
7 Mit dem Loglevel und smtpd -v:
8 Jan 3 19:51:13 server postfix/smtpd[19479]: connection established
9 Jan 3 19:51:13 server postfix/smtpd[19479]: master_notify: status 0
10 Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: resource
11 Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: software
12 Jan 3 19:51:13 server postfix/smtpd[19479]: name_mask: noanonymous
13 Jan 3 19:51:13 server postfix/smtpd[19479]: connect from
14 kohni.local[192.168.0.3]
15 Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: kohni.local: no
16 match
17 Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: 192.168.0.3: no
18 match
19 Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: kohni.local: no
20 match
21 Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: 192.168.0.3: no
22 match
23 Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostname: kohni.local ~?
24 192.168.0.0/24
25 Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostaddr: 192.168.0.3 ~?
26 192.168.0.0/24
27 Jan 3 19:51:13 server postfix/smtpd[19479]: > kohni.local[192.168.0.3]: 220
28 jankoh.dyndns.org ESMTP Postfix (2.2.5)
29 Jan 3 19:51:13 server postfix/smtpd[19479]: < kohni.local[192.168.0.3]: ?????
30 Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? CONNECT
31 Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? GET
32 Jan 3 19:51:13 server postfix/smtpd[19479]: match_string: ????? ~? POST
33 Jan 3 19:51:13 server postfix/smtpd[19479]: match_list_match: ?????: no match
34 Jan 3 19:51:13 server postfix/smtpd[19479]: > kohni.local[192.168.0.3]: 502
35 Error: command not implemented
36 Jan 3 19:51:13 server postfix/smtpd[19479]: smtp_get: EOF
37 Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostname: kohni.local ~?
38 192.168.0.0/24
39 Jan 3 19:51:13 server postfix/smtpd[19479]: match_hostaddr: 192.168.0.3 ~?
40 192.168.0.0/24
41 Jan 3 19:51:13 server postfix/smtpd[19479]: lost connection after CONNECT
42 from kohni.local[192.168.0.3]
43 Jan 3 19:51:13 server postfix/smtpd[19479]: disconnect from
44 kohni.local[192.168.0.3]
45 Jan 3 19:51:13 server postfix/smtpd[19479]: master_notify: status 1
46 Jan 3 19:51:13 server postfix/smtpd[19479]: connection closed
47
48 > Ansonsten kannst Du mit "openssl s_client -starttls smtp
49 > -CApath /etc/postfix/CAcerts -connect localhost:25" (natürlich anpassen)
50 > sehen, ob Postfix TLS richtig anbietet...
51
52 Dir zuliebe mit Output:
53 Jan 3 19:57:19 server postfix/smtpd[19487]: connect from
54 kohni.local[192.168.0.3]
55 Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: kohni.local: no
56 match
57 Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no
58 match
59 Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: kohni.local: no
60 match
61 Jan 3 19:57:19 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no
62 match
63 Jan 3 19:57:19 server postfix/smtpd[19487]: match_hostname: kohni.local ~?
64 192.168.0.0/24
65 Jan 3 19:57:19 server postfix/smtpd[19487]: match_hostaddr: 192.168.0.3 ~?
66 192.168.0.0/24
67 Jan 3 19:57:19 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 220
68 jankoh.dyndns.org ESMTP Postfix (2.2.5)
69 Jan 3 19:57:19 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]:
70 STARTTLS
71 Jan 3 19:57:19 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 220
72 Ready to start TLS
73 Jan 3 19:57:19 server postfix/smtpd[19487]: setting up TLS connection from
74 kohni.local[192.168.0.3]
75 Jan 3 19:57:19 server postfix/smtpd[19487]: attr_clnt_connect: connected to
76 private/tlsmgr
77 Jan 3 19:57:19 server postfix/smtpd[19487]: send attr request = seed
78 Jan 3 19:57:19 server postfix/smtpd[19487]: send attr size = 32
79 Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute:
80 status
81 Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: status
82 Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute value: 0
83 Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute:
84 seed
85 Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: seed
86 Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute value:
87 OBJANybTZbaJdXigt9CLxkvwNahVl7tw98d3q6EncqY=
88 Jan 3 19:57:19 server postfix/smtpd[19487]: private/tlsmgr: wanted attribute:
89 (list terminator)
90 Jan 3 19:57:19 server postfix/smtpd[19487]: input attribute name: (end)
91 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:before/accept
92 initialization
93 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv2/v3 read
94 client hello A
95 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv2/v3 read
96 client hello B
97 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read client
98 hello A
99 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write server
100 hello A
101 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write
102 certificate A
103 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write key
104 exchange A
105 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write server
106 done A
107 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 flush data
108 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
109 client certificate A
110 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
111 client certificate A
112 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
113 client certificate A
114 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read client key
115 exchange A
116 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
117 certificate verify A
118 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
119 certificate verify A
120 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
121 certificate verify A
122 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:error in SSLv3 read
123 certificate verify A
124 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 read finished A
125 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write change
126 cipher spec A
127 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 write finished A
128 Jan 3 19:57:19 server postfix/smtpd[19487]: SSL_accept:SSLv3 flush data
129 Jan 3 19:57:19 server postfix/smtpd[19487]: TLS connection established from
130 kohni.local[192.168.0.3]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
131 Jan 3 19:57:24 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]: ehlo
132 kohni.local
133 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
134 250-jankoh.dyndns.org
135 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
136 250-PIPELINING
137 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
138 250-SIZE 10240000
139 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
140 250-VRFY
141 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
142 250-ETRN
143 Jan 3 19:57:24 server postfix/smtpd[19487]: match_list_match: kohni.local: no
144 match
145 Jan 3 19:57:24 server postfix/smtpd[19487]: match_list_match: 192.168.0.3: no
146 match
147 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]:
148 250-AUTH PLAIN NTLM LOGIN DIGEST-MD5 CRAM-MD5
149 Jan 3 19:57:24 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 250
150 8BITMIME
151 Jan 3 19:57:30 server postfix/smtpd[19487]: < kohni.local[192.168.0.3]: quit
152 Jan 3 19:57:30 server postfix/smtpd[19487]: > kohni.local[192.168.0.3]: 221
153 Bye
154 Jan 3 19:57:30 server postfix/smtpd[19487]: match_hostname: kohni.local ~?
155 192.168.0.0/24
156 Jan 3 19:57:30 server postfix/smtpd[19487]: match_hostaddr: 192.168.0.3 ~?
157 192.168.0.0/24
158 Jan 3 19:57:30 server postfix/smtpd[19487]: disconnect from
159 kohni.local[192.168.0.3]
160 Jan 3 19:57:30 server postfix/smtpd[19487]: master_notify: status 1
161 Jan 3 19:57:30 server postfix/smtpd[19487]: connection closed
162
163 > HTH
164 > Ciao,
165 > Markus
166
167 MfG Jan
168
169 --
170 OpenPGP Public-Key Fingerprint:
171 0E9B 4052 C661 5018 93C3 4E46 651A 7A28 4028 FF7A

Replies

Subject Author
[gentoo-user-de] unsubscribe Maximilian Sichart <maximilian@×××××××.org>
Report Message
Find on MARC Find on Google Groups