Results 1 to 4 of 4
  1. #1
    Join Date
    May 2001
    Location
    Indiana, Florida
    Posts
    534

    TLS/Exim and Cpanel

    Hey,
    I have some problems with my mail server. When my server tries to deliver email and the other server advertise STARTTLS they try to estabilish secure connection but it fails and the mail returns to mail queue. Here is the example:

    17hzr8-0005eH-00 is not frozen
    delivering message 17hzr8-0005eH-00
    Connecting to smtp.cybertrails.com [228.77.101.161.25] ... connected
    SMTP<< 220 smtp.cybertrails.com ESMTP
    SMTP>> EHLO indiana.vipsnet.com
    SMTP<< 250-smtp.cybertrails.com
    250-PIPELINING
    250-STARTTLS
    250-SIZE 6291456
    250 8BITMIME
    SMTP>> STARTTLS
    SMTP<< 220 ready for tls
    Initialised TLS (OpenSSL/0.9.5beta)
    Cipher: TLSv1ES-CBC3-SHA:168
    SMTP>> EHLO indiana.vipsnet.com
    SMTP<< 250-smtp.cybertrails.com
    250-PIPELINING
    250-SIZE 6291456
    250 8BITMIME
    SMTP>> MAIL FROM: SIZE=2656
    SMTP>> RCPT TO:
    SMTP>> DATA
    SMTP<< 250 ok
    SMTP<< 250 ok
    SMTP<< 354 go ahead
    SMTP>> writing message and terminating "."
    SMTP<< 250 ok 1030097383 qp 20124
    tls_close(): shutting down SSL
    LOG: 0 MAIN
    => [email protected] R=lookuphost T=remote_smtp H=smtp.cybertrails.com [228.77.101.161] X=TLSv1ES-CBC3-SHA:168
    Exim version 3.35 debug level 1 uid=0 gid=0
    Berkeley DB: Sleepycat Software: DB 2.4.14: (6/2/98)
    delivering message 17i1Il-0003zp-00
    LOG: 0 MAIN
    Completed
    Return to Mail Queue SMTP>> STARTTLS
    LOG: 0 MAIN
    Remote host smtp.cybertrails.com [228.77.101.161.25] closed connection after STARTTLS
    LOG: 0 MAIN
    == [email protected] T=remote_smtp defer (-19): Remote host smtp.cybertrails.com[228.77.101.161] closed connection after STARTTLS


    I have Cpanel/WHM and i have SSL certificate installed.
    Also I have exim.crt and exim.key in my /etc directroy.

    Did any of You experienced something like this?

    and one more question, how to make my server to ignore STARTTLS and deliver my mail without encryption.

    Thanks

  2. #2
    You can set exim to ignore the error for that receiving mail server. In /etc/exim.conf, under the transports section find this:

    # This transport is used for delivering messages over SMTP connections.

    remote_smtp:
    driver = smtp

    And add this under that line:

    hosts_avoid_tls = (name of remote mail server)

    Save the file, restart exim, and that's it. We had the same problem with charter until they fixed it on their end. You might consider dropping a note to postmaster@ over there and advising them of the issue, as well.
    Annette
    Hosting Matters, Inc.
    Superior service. Sensible price.

  3. #3
    Join Date
    May 2001
    Location
    Indiana, Florida
    Posts
    534
    Annette, thank you for the info, really appreciate it.

  4. #4
    Join Date
    Dec 2001
    Posts
    380
    Originally posted by VIPsNet
    Annette, thank you for the info, really appreciate it.
    I happened to this problem with my ISP/pop3 when I tried to signup with McHost reseller plan(with NAC last year), and failed to receive my "Welcome Email" too. The problem disappeared 3 days later, because I changed to another pop3 account because they never find out what happen(I saw other people had such sign-up problems).

    Few weeks later, I sent an email from my another domain hosted by HM to this pop3.
    Same problem, but Annette dig into this for 2 days (email related problem took longer than others) and finally guided me how to explain this to my ISP.
    The pop3 worked with HM's old Albanaza server but failed with NAC server.
    Annette do know how to handle their servers with different ISP/mail servers.
    Last edited by NelsonT; 08-23-2002 at 11:51 PM.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •