From owner-freebsd-questions@FreeBSD.ORG Fri Mar 28 13:55:06 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id AA22F6A7 for ; Fri, 28 Mar 2014 13:55:06 +0000 (UTC) Received: from mailout03.t-online.de (mailout03.t-online.de [194.25.134.81]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 69319F40 for ; Fri, 28 Mar 2014 13:55:06 +0000 (UTC) Received: from fwd19.aul.t-online.de (fwd19.aul.t-online.de ) by mailout03.t-online.de with smtp id 1WTXFI-0004Xk-Qk; Fri, 28 Mar 2014 14:54:56 +0100 Received: from t-online.de (S90VJuZLoh9sbqEoJLuuJ6eNbzWSy+Fa+Nfn+fhJtHZ8pdcuA1x-SCm1bBnCWCugj0@[84.152.250.47]) by fwd19.t-online.de with esmtp id 1WTXFB-41RYeG0; Fri, 28 Mar 2014 14:54:49 +0100 Received: by t-online.de (nbSMTP-1.00) for uid 1001 johannes-maria@t-online.de; Fri, 28 Mar 2014 15:38:22 +0100 (CET) Date: Fri, 28 Mar 2014 15:38:22 +0100 From: Johannes-Maria Kaltenbach To: freebsd-questions@freebsd.org Subject: Re: (still) problems with email/ssl and t-online.de/telekom.de Message-ID: <20140328143822.GB20777@jmk.org> References: <20140326145149.GB2031@jmk.org> <20140327161804.GB23824@jmk.org> <5334D72B.9010406@bananmonarki.se> <20140328102129.GA2387@jmk.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20140328102129.GA2387@jmk.org> User-Agent: Mutt/1.4.2.3i X-ID: S90VJuZLoh9sbqEoJLuuJ6eNbzWSy+Fa+Nfn+fhJtHZ8pdcuA1x-SCm1bBnCWCugj0 X-TOI-MSGID: f1602e64-b741-4871-8856-b2aa47d2006b Cc: Bernt Hansson X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Mar 2014 13:55:06 -0000 Hello, another part of the problem solved: I'm now able to reach securesmtp.t-online.de (alias sfwdallmx.t-online.de) with sendmail + relay, but can't send any messages due to problems with authentication: latest from /var/log/maillog: | sendmail[29442]: s2SE7gPf029442: from=jmk, size=51, class=0, nrcpts=1, \ | msgid=<201403281407.s2SE7gPf029442@jmk.org>, relay=root@localhost | sendmail[29442]: STARTTLS=client, relay=sfwdallmx.t-online.de., \ | version=TLSv1/SSLv3, verify=FAIL, cipher=ECDHE-RSA-AES256-GCM-SHA384, \ | bits=256/256 | sendmail[29442]: s2SE7gPf029442: to=johannes-maria@t-online.de, \ | ctladdr=jmk (1001/1001), delay=00:00:09, xdelay=00:00:09, mailer=relay, \ | pri=30051, relay=sfwdallmx.t-online.de. [194.25.134.46], dsn=5.0.0, \ | stat=Service unavailable | sendmail[29442]: s2SE7gPf029442: s2SE7gPg029442: DSN: Service unavailable | sm-mta[29444]: s2SE7pSo029444: from=<>, size=1907, class=0, nrcpts=1, \ | msgid=..., proto=ESMTP, daemon=IPv4, relay=localhost [127.0.0.1] | sendmail[29442]: s2SE7gPg029442: to=jmk, delay=00:00:02, xdelay=00:00:02, \ | mailer=relay, pri=31075, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, \ | stat=Sent (s2SE7pSo029444 Message accepted for delivery) and the mail delivery system returns the mail to me with the message 530 5.7.0 Authentication required. 554 5.0.0 Service unavailable (while talking to sfwdallmx.t-online.de) I created a certificate with make cert in /usr/ports/security/stunnel when I installed stunnel (as adviced in the pkg-message); the certificate is stored in /usr/local/etc/stunnel. And in stunnel.log I find: | Loading cert from file: /usr/local/etc/stunnel/stunnel.pem What is wrong and what else should I do for proper authentication? Thanks, Johannes-Maria