OK. I'm making some progress here:
After attempting a sasl/tls connection to smtp.gmail.com I get the
following in the logs:
Sep 10 17:12:32 C5 postfix/postfix-script: starting the Postfix mail system
Sep 10 17:12:32 C5 postfix/master[20209]: daemon started -- version 2.3.3,
configuration /etc/postfix
Sep 10 17:13:07 C5 postfix/smtpd[20273]: connect from unknown[192.168.0.166]
Sep 10 17:13:07 C5 postfix/smtpd[20273]: 9975E34E0002:
client=unknown[192.168.0.166], sasl_method=PLAIN, sasl_username=richard
Sep 10 17:13:07 C5 postfix/cleanup[20277]: 9975E34E0002:
message-id=<4c89f6a0.4020...@aardvark.com.au>
Sep 10 17:13:07 C5 postfix/qmgr[20211]: 9975E34E0002:
from=<rchap...@aardvark.com.au>, size=621, nrcpt=1 (queue active)
Sep 10 17:13:07 C5 postfix/smtpd[20273]: disconnect from unknown[192.168.0.166]
Sep 10 17:13:10 C5 postfix/smtp[20278]: certificate verification failed for
smtp.gmail.com: num=20:unable to get local issuer certificate
Sep 10 17:13:10 C5 postfix/smtp[20278]: certificate verification failed for
smtp.gmail.com: num=27:certificate not trusted
Sep 10 17:13:10 C5 postfix/smtp[20278]: warning: SASL authentication failure:
No worthy mechs found
Sep 10 17:13:11 C5 postfix/smtp[20278]: 9975E34E0002:
to=<chapman.rich...@gmail.com>, relay=smtp.gmail.com[72.14.213.109]:587,
delay=3.4, delays=0.02/0.05/3.3/0, dsn=4.7.0, status=deferred (SASL authentication
failed; cannot authenticate to server smtp.gmail.com[72.14.213.109]: no mechanism
available)
Can anyone advise me on the best way to enable trust for the google
certificates which (I think) use an equifax CA. I am running a fairly standard
Centos 5.5 system - which probably doesn't have root certificates installed by
default.
hanks
Richard.
