ssl_dh = # hidden, use -P to show it
ssl_key = # hidden, use -P to show it
ssl_min_protocol = TLSv1.2
ssl_prefer_server_ciphers = yes
submission_relay_host = XX.XX.XX.XX
submission_relay_rawlog_dir = /var/log/dovecot.log
submission_relay_trusted = yes
verbose_ssl = yes
Logging:
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection created
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Received new command: EHLO [10.225.11.41]
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Submitted
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Ready to reply
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Completed
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection state reset
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Sent: 250-mail.example.org [3] 8BITMIME
BURL imap CHUNKING ENHANCEDSTATUSCODES SIZE STARTTLS PIPELINING
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Received new command: STARTTLS
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS: Next to reply
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS; 220 reply: Submitted
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS: Ready to reply
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS; 220 reply: Sent: 220 2.0.0 Begin TLS negotiation
now.
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Starting TLS
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection clear
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection state reset
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command STARTTLS; 220 reply: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x10, ret=1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
before SSL initialization
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS read client hello
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write server hello
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write certificate
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write server done
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=-1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS read client key exchange
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS read change cipher spec
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS read finished
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write change cipher spec
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2001, ret=1:
SSLv3/TLS write finished
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x20, ret=1: SSL
negotiation finished successfully
Dec 18 16:36:39 submission-login: Debug: SSL: where=0x2002, ret=1:
SSL negotiation finished successfully
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Received new command: EHLO [XX.XX.XX.XX]
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Submitted
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Ready to reply
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Completed
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection state reset
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Sent: 250-mail.example.org [3] 8BITMIME
AUTH PLAIN LOGIN BURL imap CHUNKING ENHANCEDSTATUSCODES SIZE
PIPELINING
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command EHLO; 250 reply: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]: No
more commands pending
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Received new command: AUTH PLAIN
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH: Next to reply
Dec 18 16:36:39 auth: Debug: client in: AUTH 1 PLAIN
service=submission secured=tls session=
lip=XX.XX.XX.XX rip=XX.XX.XX.XX lport=587 rport=49679
local_name=mail.example.org [1]
ssl_cipher=ECDHE-RSA-AES256-GCM-SHA384 ssl_cipher_bits=256
ssl_pfs= ssl_protocol=TLSv1.2 resp= (previous base64 data may
contain sensitive data)
Dec 18 16:36:39 auth: Debug: static(): lookup
Dec 18 16:36:39 auth: Debug: static(): Allowing any password
Dec 18 16:36:39 auth: Debug: client passdb out: OK 1
user= proxy host= XX.XX.XX.XX pass=
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH; 235 reply: Submitted
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH: Ready to reply
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Trigger output
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Sending replies
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH: Completed
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH; 235 reply: Sent: 235 2.7.0 Authentication successful
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH: Destroy
Dec 18 16:36:39 submission-login: Info: proxy( ): started proxying
to XX.XX.XX.XX:587: user=< >, method=PLAIN, rip=XX.XX.XX.XX,
lip=XX.XX.XX.XX, TLS, session=<>
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Disconnected: Connection closed
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
command AUTH; 235 reply: Destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection destroy
Dec 18 16:36:39 submission-login: Debug: smtp-server: conn [0]:
Connection state reset
Dec 18 16:36:40 submission-login: Info: proxy( ): disconnecting
XX.XX.XX.XX (Disconnected by server(0s idle, in=533, out=295)):
user=< >, method=PLAIN, rip=XX.XX.XX.XX, lip=XX.XX.XX.XX, TLS,
session=<>
Dec 18 16:36:40 submission-login: Debug: SSL alert: close notify
Op di 18 dec. 2018 om 07:18 schreef Aki Tuomi
<aki.tu...@open-xchange.com>:
On 18 December 2018 at 02:30 Adi Pircalabu via dovecot <
dovecot@dovecot.org> wrote:
On 2018-12-18 07:33, Ruud Voorjans wrote:
Dear all,
I'm running dovecot # 2.3.2.1 - Pigeonhole version 0.5.2 () - OS:
Linux 4.18.0-12-generic x86_64 Ubuntu 18.10 with Submission.
It works great except with apple mail (Iphone).
I get an error with the MTA (postfix):
""postfix/submission/smtpd[32552]: warning: non-SMTP command from
mail.example.org [1] [1][xx.xx.xx.xx]: Content-Transfer-Encoding:
7bit""
with other mail-client(s) (Outlook (Desktop and Iphone app)) i have
no
problem and it proxy-sends the e-mail beautiful out to the
recipient.
Hardly anything to do with Dovecot. When it comes to email clients
Apple
Mail has been and is still one of the worst flops (no offence
intended,
just my opinion based on personal experience). If you can reliably
reproduce it, try and log the raw SMTP conversation between Postfix
and
the client by enabling per IP debugging in Postfix:
postconf -e "debug_peer_level = 20"
postconf -e "debug_peer_list = xx.xx.xx.xx"
postfix reload
where xx.xx.xx.xx is the unlucky client IP address.
Possibly some crappy SMTP PIPELINING implementation at the Apple
end,
who knows.
--
Adi Pircalabu