Re: [dev] report mx.suckless.org tls issue
On April 9, 2023 4:18:16 PM UTC, p...@mailbox.org wrote: >I had checked suckless.org on https://www.hardenize.com/, which report >`TLS, No support for STARTTLS`, but on checktls.com or testtls.com, >suckless.org is fine. > >On 09.04.23 13:47, Quentin Rameau wrote: >> >> No, suckless.org MX configuration hasn't changed since last April (2022). >> >> Also, you can test yourself to see that smtps and starttls are supported. >> (https://www.checktls.com/TestReceiver can help for example, >> if you don't trust your own setup) >> >> I suspect the problem is different, maybe rather a configuration change >> on your mail provider in february? >> >> In any case, that's not a refusal for help, don't hesitate to pass >> further information on if you find something new on either side! >> > Pls don't toppost, thanks. -- Delete
Re: [dev] report mx.suckless.org tls issue
I had checked suckless.org on https://www.hardenize.com/, which report `TLS, No support for STARTTLS`, but on checktls.com or testtls.com, suckless.org is fine. On 09.04.23 13:47, Quentin Rameau wrote: > > No, suckless.org MX configuration hasn't changed since last April (2022). > > Also, you can test yourself to see that smtps and starttls are supported. > (https://www.checktls.com/TestReceiver can help for example, > if you don't trust your own setup) > > I suspect the problem is different, maybe rather a configuration change > on your mail provider in february? > > In any case, that's not a refusal for help, don't hesitate to pass > further information on if you find something new on either side! >
Re: [dev] report mx.suckless.org tls issue
Hi again, > > they are not enforcing tls, since mx.suckless.org supported tls before, > > according to their log, last time mx.suckless.org has tls on > > 2023-02-06, so they use the cache for the following email delivery, but > > out of a sudden, mx.suckless.org downgrade to non tls, so email failed to > > deliver. > > > > so my question is downgrade from tls to non-tls on mx.suckless.org is a > > deliberated step? > > No, suckless.org MX configuration hasn't changed since last April (2022). > > Also, you can test yourself to see that smtps and starttls are supported. > (https://www.checktls.com/TestReceiver can help for example, > if you don't trust your own setup) > > I suspect the problem is different, maybe rather a configuration change > on your mail provider in february? > > In any case, that's not a refusal for help, don't hesitate to pass > further information on if you find something new on either side! I think I found the issue! We're using spamd, which proxies incoming traffic from unknown senders, until their smtp has retried sending a couple times, then they're connected directly until an amount of inactivity time. That initial connection doesn't advertise tls, so I guess that's why that email provider thinks there has been a change. Maybe ask them to not enforce tls on email traffic for you? Thas sounds a bit restrictive. I'm not sure we'll get rid of spamd soon, it's a simple and nice tool, although it has a few short-comings.
Re: [dev] report mx.suckless.org tls issue
On April 9, 2023 11:47:33 AM UTC, Quentin Rameau wrote: >Hi PFX, > >> I am using the wrong words "not properly configured", what I mean is, >> since mx.suckless.org supported tls connection before, but right now >> mx.suckless.org downgraded to non tls, is this deliberately to be doing >> so? > >Thanks for the info! > >> they are not enforcing tls, since mx.suckless.org supported tls before, >> according to their log, last time mx.suckless.org has tls on >> 2023-02-06, so they use the cache for the following email delivery, but >> out of a sudden, mx.suckless.org downgrade to non tls, so email failed to >> deliver. >> >> so my question is downgrade from tls to non-tls on mx.suckless.org is a >> deliberated step? > >No, suckless.org MX configuration hasn't changed since last April (2022). > >Also, you can test yourself to see that smtps and starttls are supported. >(https://www.checktls.com/TestReceiver can help for example, >if you don't trust your own setup) > >I suspect the problem is different, maybe rather a configuration change >on your mail provider in february? > >In any case, that's not a refusal for help, don't hesitate to pass >further information on if you find something new on either side! > Hello from plch.xyz. My server enforces 's' protocols on all coms, I specify that in all configs of everything. My mail is getting through okay (unless I forget to update my certs). This doesn't seem like suckless issue. -- Dormouse
Re: [dev] report mx.suckless.org tls issue
Hi PFX, > I am using the wrong words "not properly configured", what I mean is, > since mx.suckless.org supported tls connection before, but right now > mx.suckless.org downgraded to non tls, is this deliberately to be doing > so? Thanks for the info! > they are not enforcing tls, since mx.suckless.org supported tls before, > according to their log, last time mx.suckless.org has tls on > 2023-02-06, so they use the cache for the following email delivery, but > out of a sudden, mx.suckless.org downgrade to non tls, so email failed to > deliver. > > so my question is downgrade from tls to non-tls on mx.suckless.org is a > deliberated step? No, suckless.org MX configuration hasn't changed since last April (2022). Also, you can test yourself to see that smtps and starttls are supported. (https://www.checktls.com/TestReceiver can help for example, if you don't trust your own setup) I suspect the problem is different, maybe rather a configuration change on your mail provider in february? In any case, that's not a refusal for help, don't hesitate to pass further information on if you find something new on either side!
Re: [dev] report mx.suckless.org tls issue
they are not enforcing tls, since mx.suckless.org supported tls before, according to their log, last time mx.suckless.org has tls on 2023-02-06, so they use the cache for the following email delivery, but out of a sudden, mx.suckless.org downgrade to non tls, so email failed to deliver. so my question is downgrade from tls to non-tls on mx.suckless.org is a deliberated step? On 08.04.23 16:19, Joseph Graham wrote: > Is your mail provider enforcing mandatory TLS? > > On Saturday, 8 April 2023 15:40:21 BST p...@mailbox.org wrote: > > Hello everyone, > > > > I try to post to the list, but randomly failed with the error `TLS is > > required, but was not offered by host mx.suckless.org` I report the > > issue [1] to my email provider, it seems that mx.suckless.org somehow does > > not properly configured. > > > > [1] > > https://userforum.mailbox.org/topic/6527-tls-is-required-but-was-not-offere > > d-by-host > > > > >
Re: [dev] report mx.suckless.org tls issue
I am using the wrong words "not properly configured", what I mean is, since mx.suckless.org supported tls connection before, but right now mx.suckless.org downgraded to non tls, is this deliberately to be doing so? On 08.04.23 18:54, Quentin Rameau wrote: > > Hello everyone, > > Hi PFX, > > > I try to post to the list, but randomly failed with the error `TLS is > > required, but was not offered by host mx.suckless.org` I report the > > issue [1] to my email provider, it seems that mx.suckless.org somehow does > > not properly configured. > > > > [1] > > https://userforum.mailbox.org/topic/6527-tls-is-required-but-was-not-offered-by-host > > Sorry but I don't speak German, could you explain what the conclusiont they > came to, > for saying that mx.suckless.org isn't “properly configured”? >
Re: [dev] report mx.suckless.org tls issue
> Hello everyone, Hi PFX, > I try to post to the list, but randomly failed with the error `TLS is > required, but was not offered by host mx.suckless.org` I report the > issue [1] to my email provider, it seems that mx.suckless.org somehow does > not properly configured. > > [1] > https://userforum.mailbox.org/topic/6527-tls-is-required-but-was-not-offered-by-host Sorry but I don't speak German, could you explain what the conclusiont they came to, for saying that mx.suckless.org isn't “properly configured”?
Re: [dev] report mx.suckless.org tls issue
Is your mail provider enforcing mandatory TLS? On Saturday, 8 April 2023 15:40:21 BST p...@mailbox.org wrote: > Hello everyone, > > I try to post to the list, but randomly failed with the error `TLS is > required, but was not offered by host mx.suckless.org` I report the > issue [1] to my email provider, it seems that mx.suckless.org somehow does > not properly configured. > > [1] > https://userforum.mailbox.org/topic/6527-tls-is-required-but-was-not-offere > d-by-host
