Postfix, CAfile and Macports

Daniel J. Luke dluke at geeklair.net
Wed Jan 25 21:28:59 UTC 2017


> On Jan 25, 2017, at 4:19 PM, Johannes Kastl <mail at ojkastl.de> wrote:
> Postfix is installed with +pcre+sasl+smtputf8+tls, so basically
> sending via tls and authenticating to the relayhost should work.
> 
> But: I can't get postfix to accept the servers certificate, no
> matter which smtp_tls_CAfile I set. I tried the one from
> curl-ca-bundle, the one from python, I also copied over a working
> one from Linux. But postfix seems to ignore it. I always get:
> 
>> certificate verification failed for
>> mail.your-server.de[78.46.5.205]:25: untrusted issuer
>> /C=US/O=Equifax/OU=Equifax Secure Certificate Authority
> 
> and later:
> ... status=deferred (Server certificate not trusted)

What does `openssl s_client -connect 78.46.5.205:25 -starttls smtp` say?

(using the MacPorts installed openssl)
-- 
Daniel J. Luke





More information about the macports-dev mailing list