Postfix SSL

Apr 30 16:32:29 s1 postfix/smtpd[24730]: warning: when SASL type is "dovecot", SASL path "auth-client" should be a socket pathname
Apr 30 16:32:29 s1 postfix/smtpd[24730]: warning: X.X.X.X: hostname X.X.X.X.vnet.sk verification failed: Name or service not known
Apr 30 16:32:29 s1 postfix/smtpd[24730]: connect from unknown[X.X.X.X]
Apr 30 16:32:29 s1 postfix/smtpd[24732]: warning: when SASL type is "dovecot", SASL path "auth-client" should be a socket pathname
Apr 30 16:32:29 s1 postfix/smtpd[24732]: warning: X.X.X.X: hostname X.X.X.X.vnet.sk verification failed: Name or service not known
Apr 30 16:32:29 s1 postfix/smtpd[24732]: connect from unknown[X.X.X.X]
Apr 30 16:32:29 s1 postfix/smtpd[24733]: warning: when SASL type is "dovecot", SASL path "auth-client" should be a socket pathname
Apr 30 16:32:29 s1 postfix/smtpd[24733]: connect from unknown[111.224.250.134]
Apr 30 16:32:38 s1 postfix/smtpd[24736]: warning: when SASL type is "dovecot", SASL path "auth-client" should be a socket pathname
Apr 30 16:32:38 s1 postfix/smtpd[24736]: connect from mail.profiwh.com[85.93.165.25]
Apr 30 16:32:39 s1 postfix/smtpd[24732]: SSL_accept error from unknown[X.X.X.X]: -1
Apr 30 16:32:39 s1 postfix/smtpd[24732]: lost connection after CONNECT from unknown[X.X.X.X]
Apr 30 16:32:39 s1 postfix/smtpd[24732]: disconnect from unknown[X.X.X.X]
Apr 30 16:32:39 s1 postfix/smtpd[24730]: SSL_accept error from unknown[X.X.X.X]: -1
Apr 30 16:32:39 s1 postfix/smtpd[24730]: lost connection after CONNECT from unknown[X.X.X.X]
Apr 30 16:32:39 s1 postfix/smtpd[24730]: disconnect from unknown[X.X.X.X]

Ja mam v main.cf toto a vsetko funguje:

############################
# TLS/SSL options #
############################
smtpd_tls_auth_only = no
smtp_use_tls = yes
smtpd_use_tls = yes
smtp_tls_note_starttls_offer = yes
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom

1.5.2012 23:38 asdfg
Rozbalit Rozbalit vše Re: Postfix SSL

Toto asi nema riesenie :) Dovecot bezproblemov, postfix to stale stale dokola uz treti den.

2.5.2012 06:26 alkoholik | skóre: 40 | blog: Alkoholik
Rozbalit Rozbalit vše Re: Postfix SSL

Prvni vec, kterou vratil google na tu chybovou hlasku bylo neco jako nastavte si:
smtpd_sasl_path = /var/run/dovecot/auth-client
Umite dobre anglicky?

2.5.2012 09:02 asdfg
Rozbalit Rozbalit vše Re: Postfix SSL

:~# ls -la /var/run/dovecot/
celkom 16
drwxr-xr-x  3 root root    4096 máj  1 23:21 .
drwxr-xr-x 14 root root    4096 máj  1 06:25 ..
srw-------  1 root root       0 máj  1 23:21 auth-worker.1246
srwxrwxrwx  1 root root       0 máj  1 23:21 dict-server
lrwxrwxrwx  1 root root      25 máj  1 23:21 dovecot.conf -> /etc/dovecot/dovecot.conf
drwxr-x---  2 root dovecot 4096 máj  1 23:21 login
-rw-------  1 root root       5 máj  1 23:21 master.pid
:~# ls -la /var/run/dovecot/login/
celkom 12
drwxr-x--- 2 root dovecot 4096 máj  1 23:21 .
drwxr-xr-x 3 root root    4096 máj  1 23:21 ..
srw-rw---- 1 root dovecot    0 máj  1 23:21 default
-rw-r--r-- 2 root root     230 máj  1 18:23 ssl-parameters.dat

2.5.2012 09:09 alkoholik | skóre: 40 | blog: Alkoholik
Rozbalit Rozbalit vše Re: Postfix SSL

How-to rika pridat v dovecotu service auth { unix_listener ... }.

2.5.2012 11:47 asdfg
Rozbalit Rozbalit vše Re: Postfix SSL

Pouzivam debian. Dovecot 1.1.2, postfix 2.7.1. Preco si myslis ze je problem v tomto, ked na 25 bez SSL to funguje?

2.5.2012 12:18 alkoholik | skóre: 40 | blog: Alkoholik
Rozbalit Rozbalit vše Re: Postfix SSL

To je samozrejme jina chyba.
V jakem formatu mas ty .key a .crt soubory?

2.5.2012 12:32 alkoholik | skóre: 40 | blog: Alkoholik
Rozbalit Rozbalit vše Re: Postfix SSL

Dokumentace rika:
TLS without certificates for servers serving exclusively anonymous-cipher capable clients:
/etc/postfix/main.cf: smtpd_tls_cert_file = none
Funguje alespon to?

Dotaz: Postfix SSL

Odpovědi