- Previous message: Jussi Silvennoinen: "Re: submission problem"
- In reply to: Jussi Silvennoinen: "Re: submission problem"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
|
|
|
From: Andreas Kotowicz (no email)
Date: Tue Mar 01 2005 - 07:18:27 EST
On Tue, 2005-03-01 at 14:06 +0200, Jussi Silvennoinen wrote:
> On Tue, 1 Mar 2005, Andreas Kotowicz wrote:
>
> > On Tue, 2005-03-01 at 12:59 +0200, Jussi Silvennoinen wrote:
> >
> > > > I have evolution 2.0.4.
> > > >
> > > > but I also just tried it with outlook express and it doesn't work
> > > > either. so there must be a systematic error - or I just misconfigured
> > > > postfix :)
> > >
> > > Do you understand the effect of "-o smtpd_tls_wrappermode=yes" ?
> > >
> > > To put it briefly, your smtps-configuration expects all traffic to be
> > > encrypted from the start. Your submission-configuration expects traffic to
> > > be cleartext until a STARTTLS-command is issued by the client. And this is
> > > the way it's supposed to be. Some MUA's support only either mode, some
> > > support both.
> > >
> > > Why are you trying to break a working setup intentionally? Whats wrong
> > > with talking to 465/tcp ?
> >
> > I just thought that the submission way is "the right way" to do it, as
> > it is stated in RFC2476.
> >
> > I also do expect evolution to be able to do both ways. there's nothing
> > wrong with 465/tcp, I just wanted to be able to get submission working
> > aswell.
> >
> > so you telling me, that evolution and outlook express can't do
> > submission but only smtps?
>
> This seems to be version-spesific. As I don't use either of them
> personally, I cannot confirm.
I think I found a solution for evolution:
http://lists.ximian.com/archives/public/evolution/2004-November/040448.html
"587 is for mail submission over SMTP. You should not talk SSL to it,
instead you connect, say EHLO, and then do STARTTLS to start an
encrypted session. This is generally was evolution does if you set the
SSL/Encrypted whatever to "Whenever possible"."
So do I understand it correctly that using the smtps way is the more
secure way, as communication is encrypted from the beginning?
andreas
|
|
|