Hi list,
I'd like to setup opensmtpd on my laptop to use a self hosted smarthost.
In smtpd.conf I have:
action "outbound" relay host smtp+tls://user@smarthost:587 auth
<secrets> tls no-verify
The no-verify is due to the smarthost using a self signed certificate.
Jul 25 10:57:47 x500 smtpd[7934]: info: OpenSMTPD 7.5.0 starting
Jul 25 10:57:50 x500 smtpd[29053]: 7ebb7ff8c6ccd82b mta connecting
address=smtp+tls://smarthost:587 host=fqdn
Jul 25 10:57:50 x500 smtpd[29053]: 7ebb7ff8c6ccd82b mta connected
Jul 25 10:57:52 x500 smtpd[29053]: 7ebb7ff8c6ccd82b mta tls
ciphers=TLSv1.3:TLS_AES_256_GCM_SHA384:256
Jul 25 10:57:52 x500 smtpd[29053]: 7ebb7ff8c6ccd82b mta cert-check
result="unverified"
fingerprint="SHA256:9faac1cca123850a2c07b134ac1bbdffd2370968847ad1c64bb57628de3e735c"
Jul 25 10:57:52 x500 smtpd[29053]: 7ebb7ff8c6ccd82b mta error reason=no
supported AUTH method
Telnet to the smarthost gives this:
x500# telnet smarthost 587
Trying www.xxx.yyy.zzz...
Connected to www.xxx.yyy.zzz.
Escape character is '^]'.
220 fqdn ESMTP Sendmail 8.17.1.9/8.17.1.9/Debian-2+deb12u2; Thu, 25 Jul
2024 11:07:36 +0200; (No UCE/UBE) logging access from:
[aaa.bbb.ccc.ddd](FAIL)-[aaa.bbb.ccc.ddd]
EHLO l
250-fqdn Hello [aaa.bbb.ccc.ddd], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-EXPN
250-VERB
250-8BITMIME
250-SIZE 5242880
250-DSN
250-AUTH DIGEST-MD5 CRAM-MD5
250-STARTTLS
250-DELIVERBY
250 HELP
Is DIGEST-MD5 and CRAM-MD5 supported by OpenSMTPD? I would not want to
enable clear text passwords on the smarthost. How to setup OpenSMTPD to
talk to that smarthost using STARTTLS and the supported AUTH methods?
Regards,
--
Christian
