Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem

To: debian-user@lists.debian.org
Subject: Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
From: Mihira Fernando <mihiratheace@gmail.com>
Date: Thu, 17 May 2007 13:28:43 +0000
Message-id: <[🔎] 464C588B.6060303@gmail.com>
In-reply-to: <[🔎] e46817700705162312o6f484bd4m77bf5acf3092ef6f@mail.gmail.com>
References: <[🔎] e46817700705161701y3003963fv3b681d5bf41f9b@mail.gmail.com> <[🔎] 464C341B.20003@gmail.com> <[🔎] e46817700705162312o6f484bd4m77bf5acf3092ef6f@mail.gmail.com>

Deboo ^ wrote:
> On 5/17/07, Mihira Fernando <mihiratheace@gmail.com> wrote:
> 
> 
>> You got a TLS issue. What's your Postfix setup (OS, Postfix version,
>> pluggins) ? also show output of postconf -n
> 
> OS: Debian Etch Stable
> Postfix ver: 2.3.8-2+b1

did you install :
# libsasl2 (the Cyrus SASL library)
# libsasl2-modules (the mechanisms for the SASL library)
# libsasl2-modules-sql

as you need those to get TLS working on Postfix.
> 
> Here's the output from postconf -n:
> 
> alias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> broken_sasl_auth_clients = yes
> command_directory = /usr/sbin
> config_directory = /etc/postfix
> default_privs = nobody
> home_mailbox = Maildir/
> inet_interfaces = all
> mail_owner = postfix
> mail_spool_directory = /var/mail
> mailbox_size_limit = 0
> mydestination = $myhostname, loaclhost.$mydomain $mydomain
> mydomain = example.com
> myhostname = myhost.example.com
> mynetworks_style = subnet
> myorigin = $mydomain
> recipient_delimiter = +
> smtpd_enforce_tls = yes
> smtpd_recipient_restrictions =
> permit_sasl_authenticated    permit_mynetworks    reject_unauth_destination
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain = $mydomain
> smtpd_sasl_security_options = noanonymous
> smtpd_tls_CAfile = /etc/postfix/cacert.pem

> smtpd_tls_auth_only = yes
comment this out for the moment. you can re enable it once everything is
working as expected.

> smtpd_tls_cert_file = /etc/postfix/newcert.pem
> smtpd_tls_key_file = /etc/postfix/newreq.pem
> smtpd_tls_loglevel = 3
> smtpd_tls_received_header = yes
> smtpd_tls_session_cache_timeout = 36005
> smtpd_use_tls = yes
> tls_random_source = dev:/dev/urandom

Also show logs of the reported error.

Please don't Cc: me, I'm subscribed to the list as well :)

-- 
Random Quotes From Megas XLR
Coop: You see? The mysteries of the Universe are revealed when you break
stuff.
Jamie: When in doubt, blow up a planet.
Kiva: It's an 80 foot robot, if we can't see it, absolutely it's not here.
Glorft Technician: Unnecessary use of force in capturing the Earthers
has been approved.

Reply to:

Follow-Ups:
- Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
  - From: "Deboo ^" <knowledgeful@gmail.com>

References:
- [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
  - From: "Deboo ^" <knowledgeful@gmail.com>
- Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
  - From: Mihira Fernando <mihiratheace@gmail.com>
- Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
  - From: "Deboo ^" <knowledgeful@gmail.com>

Prev by Date: Re: [not-OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
Next by Date: [RESOLVED] Re: sid + gnome + automount
Previous by thread: Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
Next by thread: Re: [OT] Postfix - STARTTLS problem: 454 4.3.0 TLS not available due to local problem
Index(es):
- Date
- Thread