I apologize for taking so long to reply to your message, I didn't see it until
this morning and didn't have time to respond until now.
Could you provide a link to the thread you read? I don't remember it offhand
and searching my email archives for "timeout" turns up hundreds of messages.
As far as requiring TLS from your mail clients but not other servers, I'm not
sure how you can do that. How can spamdyke tell the difference between a mail
client and a remote server? If you're just talking about authentication, you
could configure spamdyke to block authentication on port 25 connections
("smtp-auth-level=none"), which would force your users to use port 587 in order
to authenticate, but that still wouldn't force them to use TLS. Maybe if you
blocked authentication on port 25, turned off port 587, then required
authentication on port 465 where SSL is mandatory, that might work. I can't
imagine your helpdesk staff would thank you for that change though.
I'm already planning to add a filter to a future version to block
authentication unless SSL/TLS is in use, but I can't give you an ETA on that.
-- Sam Clippinger
On Feb 3, 2014, at 8:05 PM, Bruce Schreiber <bschrei...@max.md> wrote:
> Problem: TLS reason: TIMEOUT
>
> I read an old thread on this problem, but did not see a solution. What
> was the outcome?
> # spamdyke -v
> spamdyke 4.3.1+TLS+CONFIGTEST+DEBUG (C)2012 Sam Clippinger, samc (at)
> silence (dot) org
> http://www.spamdyke.org/
>
> Use -h for an option summary or see README.html for complete option details.
>
> # uname -a
> Linux rs6.max.md 2.6.18-194.17.1.el5 #1 SMP Mon Sep 20 07:12:06 EDT 2010
> x86_64 x86_64 x86_64 GNU/Linux
>
> In spamdyke.config
>
> tls-level=smtp
>
> tls-certificate-file=/var/qmail/control/servercert.pem
>
> Also, I am confused about one thing. We want to require TLS for SMTP
> between QMAIL and the mail client. We do not care about TLS from QMAIL
> to another Mail server. If I turn off the SPAMDYKE tls-level, and leave
> the tls patch in QMAIL will the client side TLS still work and the
> timeout go away?
>
> Bruce
>
> --
> Bruce B Schreiber
> CTO, MaxMD
> 2200 Fletcher Ave, 5th Floor
> Fort Lee, NJ 07024
> 201 963 0005 office
> 917 532 4995 cell
> bschrei...@max.md
> www.max.md
> www.mdEmail.md
>
> _______________________________________________
> spamdyke-users mailing list
> spamdyke-users@spamdyke.org
> http://www.spamdyke.org/mailman/listinfo/spamdyke-users
_______________________________________________
spamdyke-users mailing list
spamdyke-users@spamdyke.org
http://www.spamdyke.org/mailman/listinfo/spamdyke-users
