HELP: TLS Configuration

Use this forum to report bugs and to check for bugfixes and new releases of OpenEMM

Moderator: moderator

felixpahl
Posts: 3
Joined: Thu Jan 13, 2011 3:45 pm

HELP: TLS Configuration

Post by felixpahl »

Hi all,

I have OpenEMM 6.2 windows version installed.
Sending Emails via my ISP works fine. I have a problem, when using the smart relay host:

It seems my mail-provider does not support TLS. I do see the following message in my semu-log:

[13.01.2011 09:00:37] 364 DEBUG/11f0Tbc0600000001: New entry C:\OpenEMM\var\spool\ADMIN\qf11f0Tbc0600000001 from external source
[13.01.2011 09:00:37] 364 DEBUG/11f0Tbc0600000001: Entry is ready to send, current trycount is 33
[13.01.2011 09:00:37] 364 DEBUG/11f0Tbc0600000002: New entry C:\OpenEMM\var\spool\ADMIN\qf11f0Tbc0600000002 from external source
[13.01.2011 09:00:37] 364 DEBUG/11f0Tbc0600000002: Entry is ready to send, current trycount is 33
[13.01.2011 09:00:38] 364 WARNING/11f0Tbc0600000001: Retry as sent to mail.mydomain.com failed 400: "('STARTTLS extension not supported by server.',)"
[13.01.2011 09:00:38] 364 DEBUG/11f0Tbc0600000001: Skip incomplete bounce None/None/"('STARTTLS extension not supported by server.',)"
[13.01.2011 09:00:38] 364 DEBUG/11f0Tbc0600000001: Updated qfile C:\OpenEMM\var\spool\ADMIN\qf11f0Tbc0600000001
[13.01.2011 09:00:38] 364 INFO/11f0Tbc0600000001: Softbounce 400: ('STARTTLS extension not supported by server.',)


My mail-provider is telling me, that I need to disable TLS support. Is there a way I could do this?

Thanks for your help.

Best,
Felix
maschoff
Site Admin
Posts: 2653
Joined: Thu Aug 03, 2006 10:20 am
Location: Munich, Germany
Contact:

Re: HELP: TLS Configuration

Post by maschoff »

Quick & dirty hack: Remove line "smtp.starttls ()" from file semu.py in /home/openemm/bin/scripts.
OpenEMM Maintainer
felixpahl
Posts: 3
Joined: Thu Jan 13, 2011 3:45 pm

Re: HELP: TLS Configuration

Post by felixpahl »

Hi maschoff,

thanks a lot for your quick reply.
I removed the line, but now I do get the following errors:

[14.01.2011 12:47:46] 404 WARNING/7acTc21900000001: Retry as sent to mail.mycompany.com failed 400: "('SMTP AUTH extension not supported by server.',)"
[14.01.2011 12:47:46] 404 DEBUG/7acTc21900000001: Skip incomplete bounce None/None/"('SMTP AUTH extension not supported by server.',)"
[14.01.2011 12:47:46] 404 DEBUG/7acTc21900000001: Updated qfile C:\OpenEMM\var\spool\ADMIN\qf7acTc21900000001
[14.01.2011 12:47:46] 404 INFO/7acTc21900000001: Softbounce 400: ('SMTP AUTH extension not supported by server.',)

This is strange now, as the server does require authentication.
I tried this previously by sending emails via telnet connection.

Any idea?

Best,
Felix
felixpahl
Posts: 3
Joined: Thu Jan 13, 2011 3:45 pm

Re: HELP: TLS Configuration

Post by felixpahl »

Hi Maschoff,

I found the problem here.

Since I removed the just the starttls from the file semu.py, there is still the 2nd EHLO being sent.
I also remove the EHLO (after the starttls) and now the relay work fine.

Solution:

Remove both lines from semu.py (after "if auth:"):
smtp.starttls ()
smtp.ehlo ()

Best,
Felix
Civilian
Posts: 1
Joined: Thu Oct 06, 2011 8:58 am

Re: HELP: TLS Configuration

Post by Civilian »

Start-up tutorial :
www.clearchain.com/blog/posts/setting-u ... er-freebsd
Also:
munin-monitoring.org/wiki/MuninTLSSetup
Last edited by Civilian on Mon Jun 18, 2012 3:19 pm, edited 2 times in total.
maschoff
Site Admin
Posts: 2653
Joined: Thu Aug 03, 2006 10:20 am
Location: Munich, Germany
Contact:

Re: HELP: TLS Configuration

Post by maschoff »

Thanks for your feedback! I will include the TLS issue in the next release of the OpenEMM Install Guide.
OpenEMM Maintainer
Post Reply