On Fri, 6 Jun 2014, Matus UHLAR - fantomas wrote: > On 05.06.14 22:48, Joe Laffey wrote: >> Is there any way to cause courier to log that a connection is using >> TLS/SSL for receiving and sending mail from other mail relays? > > I think this is already done for received mail - the SSL/TLS info is added > to Received: header.
Thanks for the reply. Yes, I found I had my postfix machine misconfigured such that it only used TLS for receiving mail and not sending. Thus courier was (correctly) not logging or adding headers to mail coming from the postfix machine. Also by default postfix does not add the headers to mail it receives. So I was not seeing those on mail coming form the courier machine (because the receiving machine is the one that adds it to the headers). So I fixed the conf on the postfix machine, and enabled the addition of the TLS headers on the postfix machine. Now I see the headers going from postfix to courier, and from courier to postfix. This really wasn't a courier issue at all. It was my incorrect assumption that enabling TLS for smtpd on postfix enabled it for incoming and outgoing. It works on courier ;-) > >> Is there a way to have it add a headder saying that TLS/SSL was used? >> When I send mail using SMTP AUTH with TLS/SSL then I see a header to >> this effect, but if I just send an email from one TLS capable server to >> my courier server, or from my courier server to another TLS capable >> server I do not see any indication that the connection was encrypted. > > and was it encrypted? You must allow the MTA as SMTP client to use TLS on > outgoing connections. (see above) That was the issue. The postfix machine was not actually using TLS when sending mail. Thanks! -- Joe Laffey The Stable Visual Effects http://TheStable.tv/?e34486M/ ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/NeoTech _______________________________________________ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
