Notification messages failing
Peter Bonivart
peter at UCGBOOK.COM
Tue Jan 11 23:20:25 GMT 2005
[ The following text is in the "ISO-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
Julian Field wrote:
>> I wouldn't call myself a TLS expert at all but I see these lines all the
>> time without any error. To me it just means that two TLS capable MTA:s
>> negotiated for authentication but it failed as in no matching
>> certificates, not as in an actual technical error.
>
>
> But the line after that failed with a "Service unavailable" error.
Yes, but I get the verification errors all the time with MTA:s on the
internet that are TLS capable, but no errors so I'm not sure it's a TLS
problem. It's just that we have not exchanged certificates. But as
usual, I could be wrong. :-)
But anyway, if it's an internal server it's usually not preferable to
use TLS since it will encrypt/decrypt everything even without
authentication and that eats some performance.
You can control TLS behavior with the access file. It's described here
(look especially at bottom):
http://sendmail.org/m4/starttls.html
--
/Peter Bonivart
--Unix lovers do it in the Sun
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the MAQ (http://www.mailscanner.biz/maq/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list