Postfix, CAfile and Macports
Daniel J. Luke
dluke at geeklair.net
Wed Jan 25 21:28:59 UTC 2017
> On Jan 25, 2017, at 4:19 PM, Johannes Kastl <mail at ojkastl.de> wrote:
> Postfix is installed with +pcre+sasl+smtputf8+tls, so basically
> sending via tls and authenticating to the relayhost should work.
>
> But: I can't get postfix to accept the servers certificate, no
> matter which smtp_tls_CAfile I set. I tried the one from
> curl-ca-bundle, the one from python, I also copied over a working
> one from Linux. But postfix seems to ignore it. I always get:
>
>> certificate verification failed for
>> mail.your-server.de[78.46.5.205]:25: untrusted issuer
>> /C=US/O=Equifax/OU=Equifax Secure Certificate Authority
>
> and later:
> ... status=deferred (Server certificate not trusted)
What does `openssl s_client -connect 78.46.5.205:25 -starttls smtp` say?
(using the MacPorts installed openssl)
--
Daniel J. Luke
More information about the macports-dev
mailing list