On Wed, 26 Nov 2014, Gaétan Ryckeboer wrote: > You are right, as the mail logs joined proves it. My first sentence is > false, but the config bug is true.
Works just fine for me: $ gnutls-cli --no-ca-verification -s buxtehude.debian.org -p 25 Processed 168 CA certificate(s). Resolving 'buxtehude.debian.org'... Connecting to '140.211.166.26:25'... - Simple Client Mode: 220 buxtehude.debian.org ESMTP Exim 4.80 Wed, 26 Nov 2014 18:30:36 +0000 EHLO donarmstrong.com 250-buxtehude.debian.org Hello donarmstrong.com [172.56.8.6] 250-SIZE 104857600 250-8BITMIME 250-STARTTLS 250 HELP STARTTLS 220 TLS go ahead *** Starting TLS handshake - Certificate type: X.509 - Got a certificate list of 1 certificates. - Certificate[0] info: - subject `C=NA,ST=NA,L=Ankh Morpork,O=Debian SMTP,OU=Debian SMTP CA,CN=buxtehude.debian.org,[email protected]', issuer `C=NA,ST=NA,L=Ankh Morpork,O=Debian SMTP,OU=Debian SMTP CA,CN=Debian SMTP CA,[email protected]', RSA key 2048 bits, signed using RSA-SHA1, activated `2014-04-08 17:11:47 UTC', expires `2015-04-08 17:11:47 UTC', SHA-1 fingerprint `61100a907ca6aa439701fec6588d6f823d748273' Public Key ID: 0c51153b1eaaedd069eb1e3b9667c3b1b1adbdeb Public key's random art: +--[ RSA 2048]----+ | ....o. | | . . | | . + | | o o o | | S . | | + .o | | o *o * | | +++B.. | | +*+.+Eo | +-----------------+ - Successfully sent 0 certificate(s) to server. - Description: (TLS1.2)-(RSA)-(AES-128-CBC)-(SHA1) - Session ID: F1:49:68:34:05:08:9F:EF:7A:AC:88:BD:AC:3A:5C:95:E9:D0:02:DC:E1:8E:90:EE:16:7C:C2:0A:E5:78:AF:76 - Version: TLS1.2 - Key Exchange: RSA - Cipher: AES-128-CBC - MAC: SHA1 - Compression: NULL RCPT TO: <[email protected]> 503 sender not yet given MAIL FROM: <[email protected]> 250 OK RCPT TO: <[email protected]> 451 Greylisted, see http://postgrey.schweikert.ch/help/bugs.debian.org.html QUIT 221 buxtehude.debian.org closing connection - Peer has closed the GnuTLS connection -- Don Armstrong http://www.donarmstrong.com I'm So Meta, Even This Acronym -- xkcd http://xkcd.com/917/ -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
