On Tue, Sep 24, 2024 at 09:54:27PM +0800, Wesley via Postfix-users <postfix-users@postfix.org> wrote:
> I have a backup MX server which shows this error in its mail.log: > > Sep 24 21:49:18 mxback postfix/smtps/smtpd[24711]: connect from > unknown[165.154.138.57] > Sep 24 21:49:18 mxback postfix/smtps/smtpd[24711]: SSL_accept error from > unknown[165.154.138.57]: -1 > Sep 24 21:49:18 mxback postfix/smtps/smtpd[24711]: warning: TLS library > problem: error:0A00006C:SSL routines::bad key > share:../ssl/statem/extensions_srvr.c:646: > Sep 24 21:49:18 mxback postfix/smtps/smtpd[24711]: lost connection after > CONNECT from unknown[165.154.138.57] > Sep 24 21:49:18 mxback postfix/smtps/smtpd[24711]: disconnect from > unknown[165.154.138.57] commands=0/0 > > do you know what are "SSL_accept error" and "TLS library problem" in above > statements? > > Thanks. I might indicate that someone has been running tests against the mail server to determine which versions of protocols it supports. If that's the case, there will probably be lots of failures in a short timespan, unless the scan is scanning for a single thing across many IP addresses. Or it might indicate that the mail server refuses to support something that an old client is trying to use (i.e., TLS 1.0 or 1.1). But I'm not sure what "bad key" means specifically so I might be wrong. cheers, raf _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
