From owner-freebsd-questions@FreeBSD.ORG Tue Oct 30 17:52:39 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CFC6616A41A for ; Tue, 30 Oct 2007 17:52:39 +0000 (UTC) (envelope-from noeldude@gmail.com) Received: from fk-out-0910.google.com (fk-out-0910.google.com [209.85.128.185]) by mx1.freebsd.org (Postfix) with ESMTP id 531BF13C4DA for ; Tue, 30 Oct 2007 17:52:38 +0000 (UTC) (envelope-from noeldude@gmail.com) Received: by fk-out-0910.google.com with SMTP id b27so2689529fka for ; Tue, 30 Oct 2007 10:52:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=tepJqEDmYyJ7C9PuEgo5OwGi+xgC4UfV/jcaQt+WwEQ=; b=Sas71FJY1W7q7jlGoiSmA8WKa4BUkWrG8yCRGphJRDO93ns0d3SeBZjND23t2Mp3bgeSik8ElX4QMLCYCZCC6ucB/2gi9o5rwVwAudto4bc2kkwmIrkjGQS+BZr7ZMHa5tP1r0EFCxxAifgQhO+HB93ACteYDxcT5aPGKQy8A7Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=eP7P0ZYXPaZIH6X7hzC5WQX/n/McNiGG50ErVB7obipS11x1/PISZl69+aPdKUDS4vIAibyFStaFXlg/fm+ttt+Yam7tSJ9b0faREe2cDz7vE2nwD5guoL67Lpby2dxBmpP5HM6wPpnlEHYSJMWlmikJHfb5TpFjqVMsGdCtRt4= Received: by 10.82.107.15 with SMTP id f15mr13217052buc.1193765306513; Tue, 30 Oct 2007 10:28:26 -0700 (PDT) Received: by 10.82.189.15 with HTTP; Tue, 30 Oct 2007 10:28:26 -0700 (PDT) Message-ID: Date: Tue, 30 Oct 2007 12:28:26 -0500 From: "Noel Jones" To: "dhaneshk k" In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: Cc: freebsd-questions@freebsd.org Subject: Re: telnet mydomain.ild 465 : connection closed X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2007 17:52:39 -0000 On 10/30/07, dhaneshk k wrote: > > Hi all , pls hepl me to fix this issue > > > I followed this DOC > > > http://www.purplehat.org/?page_id=8 > > > Here while I am testing postfix setup at this point > > telnet localhost 25 : the OutPut obtained as described as in the tutorial in the above link (This test SUCCESSFULL) > > BUT for telnet loclhost 465 I cant get the o/p as in tutorial > > > Here what I am able to get for telnet localhost 465 > When you specify "-o smtpd_tls_wrappermode=yes" port 465 is tunneled through SSL and cannot be tested with telnet. The website you are looking at faked their test results. This automatically makes me suspicious of the rest of their how-to, but I didn't check anything else for accuracy. To test wrappermode TLS, use the "openssl s_client" command, which you can think of as an encrypted telnet for testing TLS connections. Try: $ openssl s_client -connect localhost:465 You will be presented with a couple screens of TLS handshake info, and then presented with the postfix 220 greeting banner. Also note that after you issue an EHLO command on port 465, the STARTTLS option won't be offered since TLS is already active. You can also test that TLS is working on port 25 (which requires the STARTTLS command) with: $ openssl s_client -connect localhost:25 -starttls smtp The above command issues the STARTTLS command for you and establishes an encrypted connection. -- Noel Jones