Now I can go watch the Orioles play, and enjoy a beer. ;-)
On 7/5/2018 6:48 PM, South Computers wrote:
Did a comparison of /control directories from another toaster, and
noticed the link from clientcert.pem -> servercert.pem.
And realized I only had a servercert.rpm.new
Renamed it. Doh!
Wo
Did a comparison of /control directories from another toaster, and
noticed the link from clientcert.pem -> servercert.pem.
And realized I only had a servercert.rpm.new
Renamed it. Doh!
Working.
Thank you to everyone who contributed, and especially you Eric.
Next time you're in Miami, I'll b
Eek! :-)
New Belgium Trying a Fat tire. Normally do Becks, but especially partial
to a true Trappist or Abbey.
Cool command there! Now I'm really lost... Attached the output.
Eric Broch wrote:
Try this command from your CentOS 5 box
openssl s_client -starttls smtp -no_ssl3 -no_ssl2 -debu
Try this command from your CentOS 5 box
openssl s_client -starttls smtp -no_ssl3 -no_ssl2 -debug -msg -connect
fpl-com.mail.protection.outlook.com:25
What kind of beer? Hopefully not Schlitz. ;-)
On 7/5/2018 5:57 PM, South Computers wrote:
No worries, I appreciate it.
tlsserverciphiers is
No worries, I appreciate it.
tlsserverciphiers is fine.
And checking the mail in the queue that fails with the TLS errors, they
are all going to office365 accounts, with 1 going to a hotmail account,
but all the mx records point to something.protection.outlook.com, so
basically the same.
Te
Sorry, my mistake, check tlsciphers 'cat
/var/qmail/control/tlsserverciphers'
mine on CentOS 6 & 7 look like this:
DHE-RSA-SEED-SHA:DHE-DSS-SEED-SHA:ADH-SEED-SHA:SEED-SHA:IDEA-CBC-SHA:KRB5-IDEA-CBC-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA
Good question, hadn't considered that. Will check it tonight.
Eric Broch wrote:
What about your dh key, Is it to small?
On 7/5/2018 1:28 PM, South Computers wrote:
This is a repeat, my first reply went directly to Eric, sorry about
that sir.
Thank you Eric, might give it a shot later.
I
What about your dh key, Is it to small?
On 7/5/2018 1:28 PM, South Computers wrote:
This is a repeat, my first reply went directly to Eric, sorry about
that sir.
Thank you Eric, might give it a shot later.
In the meantime though, since the update, I'm having tls connect
problems to certain
This is a repeat, my first reply went directly to Eric, sorry about
that sir.
Thank you Eric, might give it a shot later.
In the meantime though, since the update, I'm having tls connect
problems to certain domains. For certain ofice365 accounts are not going
through.
deferral: TLS_connec
If people want qmail-dk (ssl) and have already installed the update
(qmail version 1.03-1.3.24) you can do the following to get qmail-dk
working with ssl/crypto:
(i686)
# rpm -Uvh
ftp://ftp.qmailtoaster.org/pub/repo/qmt/CentOS/5/testing/i386/libdomainkeys-toaster-0.68-1.3.7.i686.rpm
# rpm -
FWIW, I did not update my qmail-dk binary. I was hypothesizing it was
only used to sign, not to communicate, and therefore the version of
openssl didn't matter. I might be wrong, but I'm still sending mail?
Brian
On 7/5/18 06:38, South Computers wrote:
Interestingly, this broke DKIM.
I
I just rebooted and I see the same issues
I see
>> Hi,
>>
>> It asked for newer versions libcurl and libcurl-devel versions, default
>> centos5 repostitory is 7.15 so I had to install libssh2,
>> libcurl-7.21.7-5.el5.remi.2.x86_64.rpm,
>> libcurl-devel-7.21.7-5.el5.remi.2.x86_64.rpm and ever
Thanks!
An oversight on my part, I'll probably have to recompile and link
domainkeys with openssl101e if anyone's interested. I'm not sure how
much it's in use these days being replaced by dkim.
On 7/5/2018 7:38 AM, South Computers wrote:
Interestingly, this broke DKIM.
I don't have the ti
Interestingly, this broke DKIM.
I don't have the time to look further right now, but disabled dk for the
time being, and it's working.
Was getting this in smtp/current when trying to send mail:
@40005b3e1a821e069b7c qmail-dk:[3870]: Dying due to a POSSIBLE BUG!
etc...
South Computers
Also mostly a lurker these days, but wanted to chime in and give a big
thanks as well Eric.
Much appreciate all your work to keep this going.
Scott
Also, if anyone else has neglected to keep their toaster up to date and
needs to manually install the epel repo, at least for x86 on COS5:
wget
h
15 matches
Mail list logo