Newsportal USENET - Re: STS causes mail to be deferred

Sujet : Re: STS causes mail to be deferred
De : INVALID_NO_CC_REMOVE_IF_YOU_DO_NOT_POST_ml+sendmail(-no-copies-please) (at) *nospam* esmtp.org (Claus Aßmann)
Groupes : comp.mail.sendmail
Date : 28. Dec 2024, 07:08:46

Autres entêtes

Organisation : MGT Consulting
Message-ID : <vko4le$bcf$1@news.misty.com>
References : 1 2 3 4
User-Agent : trn 4.0-test77 (Sep 1, 2010)

Marco Moock wrote:

Dec 26 21:39:18 srv1 sendmail[394144]: STARTTLS=client,
relay=microsoft-com.mail.protection.outlook.com., version=TLSv1.3,
verify=FAIL, cipher=TLS_AES_256_GCM_SHA384, bits=256/256

^^^^^^^^^^^

to=<itex-rua@microsoft.com>, delay=13:11:09, xdelay=00:00:03,
mailer=esmtp, pri=7501890, relay=microsoft-com.mail...ction.outlook.com.
[IPv6:2a01:111:f403:f905:0:0:0:0], dsn=2.6.0, stat=Sent

This happened after I disabled sts.

and if you enable STS mail cannot be sent because the server cert
cannot be verified.
sendmail works as it should.

Now you need to fix your CACert* settings -- check what openssl
uses in case it is able to verify the server.

BTW: doesn't M$ support DANE by now?

Date	Sujet	#	Auteur
27 Dec 24	STS causes mail to be deferred	8	Marco Moock
27 Dec 24	Re: STS causes mail to be deferred	7	Claus Aßmann
27 Dec 24	Re: STS causes mail to be deferred	6	Marco Moock
27 Dec 24	Re: STS causes mail to be deferred	5	Claus Aßmann
27 Dec 24	Re: STS causes mail to be deferred	4	Marco Moock
28 Dec 24	Re: STS causes mail to be deferred	3	Claus Aßmann
28 Dec 24	Re: STS causes mail to be deferred	1	Marco Moock
28 Dec 24	Re: STS causes mail to be deferred	1	Bjørn Mork