This is more of an annoyance than anything else. When my Postfix (v 2.6.7) attempts to send a message via TLS the following warning is received:
"postfix/smtp[28338]: certificate verification failed for mail.xxxxx.org[xxx.xxx.xxx.xxx]:25: untrusted issuer /C=US/O=Entrust.net/OU=www.entrust.net/CPS incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Secure Server Certification Authority" Mail is still sent despite warning. Suspect that problem is either: 1. Using a self-signed certificate and need to purchase one to use with mail server. If this is the case, would appreciate recommendations/weblinks on good places to purchase. 2. Configuration error. Partial main.cf is below: smtpd_use_tls = yes smtp_use_tls = yes smtp_tls_note_starttls_offer = yes smtpd_tls_auth_only = no smtp_tls_security_level = may smtpd_tls_key_file = /etc/postfix/ssl/server.key smtpd_tls_cert_file = /etc/postfix/ssl/server_selfsign.crt smtpd_tls_CAfile = /etc/postfix/ssl/server_selfsign.crt smtp_tls_CAfile = /etc/postfix/exchange.pem smtp_tls_policy_maps = hash:/etc/postfix/tls_policy smtpd_tls_mandatory_ciphers = high smtpd_tls_loglevel = 2 smtpd_tls_received_header = yes smtpd_tls_session_cache_timeout = 3600s tls_random_source = dev:/dev/urandom smtpd_tls_session_cache_database = sdbm:/etc/postfix/smtpd_scache smtpd_tls_session_cache_database = btree:/var/lib/postfix/smtpd_scache Thanks in advance for any help!
