TLS negotiation fails with Postfix

RESOLVED INVALID

Status

Thunderbird
Untriaged
RESOLVED INVALID
3 years ago
3 years ago

People

(Reporter: TheGrave, Unassigned)

Tracking

({csectype-other})

31 Branch
x86_64
Linux
csectype-other

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

3 years ago
User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:34.0) Gecko/20100101 Firefox/34.0
Build ID: 20141127111021

Steps to reproduce:

Trying to connect to Postfix 2.10.2-1 with SSL/TLS in the SMTP config settings




Actual results:

Thunderbird sends "???" instead of EHLO:

Dec  9 01:31:46 Server postfix/smtpd[21942]: > unknown[1.1.1.1]: 220 mail.mydomain.com ESMTP Postfix
Dec  9 01:31:46 Server postfix/smtpd[21942]: watchdog_pat: 0x7fc4f2a056d0
Dec  9 01:31:46 Server postfix/smtpd[21942]: vstream_fflush_some: fd 22 flush 39
Dec  9 01:31:46 Server postfix/smtpd[21942]: vstream_buf_get_ready: fd 22 got 158
Dec  9 01:31:46 Server postfix/smtpd[21942]: < unknown[1.1.1.1]: ???
Dec  9 01:31:46 Server postfix/smtpd[21942]: match_string: ??? ~? CONNECT
Dec  9 01:31:46 Server postfix/smtpd[21942]: match_string: ??? ~? GET
Dec  9 01:31:46 Server postfix/smtpd[21942]: match_string: ??? ~? POST
Dec  9 01:31:46 Server postfix/smtpd[21942]: match_list_match: ???: no match
Dec  9 01:31:46 Server postfix/smtpd[21942]: report unknown command to all milters
Dec  9 01:31:46 Server postfix/smtpd[21942]: milter8_unknown_event: milter inet:localhost:2932: unknown command: ???
Dec  9 01:31:46 Server postfix/smtpd[21942]: event: SMFIC_UNKNOWN; macros: (none)

Everything works fine with STARTTLS in the config but I want to avoid it's as it's very insecure.


Expected results:

SSL/TLS setting to be working
(Reporter)

Updated

3 years ago
Keywords: csectype-other
(Reporter)

Comment 1

3 years ago
My bad. Postfix requires -o smtpd_tls_wrappermode=yes in master.cf for the service that handles the clients.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.