I'm running postfix on server and client, forcing TLS on both.
No matter what I do, I can't seem to solve "Untrusted TLS connection
established to [...]:587: TLSv1 with cipher ADH-AES256-SHA (256/256
bits)" warning messages in the client log file. Aside from those
warnings, mail delivery actually works fine.
I configured the server generally using these instructions:
http://nixcraft.com/getting-started-tutorials/3075-postfix-mail-server-create-self-signed-ssl-certificates-cent-os-redhat-linux.html
Just using self-signed certificates.
I then copied the cacert.pem file from the server to the client, and set
smtp_tls_CAfile to point at that file on the client, which I thought
would add my certificate authority as a "trusted authority" on the
client. But I still get the warning the TLS connection is untrusted.
What am I doing wrong?
