Hi all
I'm using Qmail SMTP-AUTH/TLS composite patch
(http://shupp.org/patches/netqmail-1.05-tls-smtpauth-20070417.patch)
on netqmail-1.05.
I don't get a "Received [..] with (DHE-RSA-AES256-SHA
encrypted) SMTP;") header in mails I send. I tried
with Thunderbird ver. 1.5.0.7. What I get is:
Received: ...with ESMTPA.
Further info relating to this is as follows:
telnet 192.168.1.50 25
Trying 192.168.1.50...
Connected to 192.168.1.50.
Escape character is '^]'.
220 mail.mydomain.com ESMTP
ehlo
250- mail.mydomain.com
250-STARTTLS
250-PIPELINING
250-8BITMIME
250-SIZE 31457280
250 AUTH LOGIN PLAIN
STARTTLS
220 ready for tls
Initially, I tried with a self-signed cert, did not
work. I thought that might be the cause. So I created
a my own CA root cert and used that to sign a server
cert. Added the CA cert to Thunderbird. But I still
don't get the Received header.
openssl s_client -CAfile CA-2048.pem \
-starttls smtp -crlf -connect 192.168.1.50:25
:
verify return:1
:
New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA
Server public key is 2048 bit
SSL-Session:
Protocol : TLSv1
Cipher : DHE-RSA-AES256-SHA
Session-ID: BF90E172...
Session-ID-ctx:
Master-Key: 1A30A13A58...
Key-Arg : None
Start Time: 1186677156
Timeout : 300 (sec)
Verify return code: 0 (ok)
---
250- mail.mydomain.com
250-STARTTLS
250-PIPELINING
250-8BITMIME
250-SIZE 31457280
250 AUTH LOGIN PLAIN
tlsserverciphers set as follows:
openssl ciphers
'HIGH:MEDIUM:!EXP:!ADH:+SSLv2:@STRENGTH' >
/var/qmail/control/tlsserverciphers
What could be the issue? Any help in this regard is
highly appreciated.
Kind regards
Unga
____________________________________________________________________________________
Park yourself in front of a world of choices in alternative vehicles. Visit the
Yahoo! Auto Green Center.
http://autos.yahoo.com/green_center/
|