From owner-freebsd-chat Sun Jun 10 15:40:55 2001 Delivered-To: freebsd-chat@freebsd.org Received: from lists.unixathome.org (lists.unixathome.org [210.48.103.158]) by hub.freebsd.org (Postfix) with ESMTP id 0AE0F37B401 for ; Sun, 10 Jun 2001 15:40:51 -0700 (PDT) (envelope-from dan@langille.org) Received: from wocker (lists.unixathome.org [210.48.103.158]) by lists.unixathome.org (8.11.1/8.11.1) with ESMTP id f5AMeSU70666; Mon, 11 Jun 2001 10:40:29 +1200 (NZST) (envelope-from dan@langille.org) Message-Id: <200106102240.f5AMeSU70666@lists.unixathome.org> From: "Dan Langille" Organization: novice in training To: "Si" Date: Sun, 10 Jun 2001 18:40:27 -0400 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: RE: MTA authentications Reply-To: dan@langille.org Cc: In-reply-to: References: <200106101336.f5ADa1U61233@lists.unixathome.org> X-mailer: Pegasus Mail for Win32 (v3.12c) Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On 10 Jun 2001, at 23:37, Si wrote: > > -----Original Message----- > > From: owner-freebsd-chat@FreeBSD.ORG > > [mailto:owner-freebsd-chat@FreeBSD.ORG]On Behalf Of Dan Langille > > Sent: 10 June 2001 14:36 > > To: Alex Zepeda > > Cc: chat@freebsd.org > > Subject: Re: MTA authentications > > > > > > On 10 Jun 2001, at 4:50, Alex Zepeda wrote: > > > > > On Sat, Jun 09, 2001 at 11:43:44PM -0400, Dan Langille wrote: > > > > > > > I also meant to say that it appears that this new "standard" is not > > > > backwards compatible. > > > > > > It is very much so. SSL is implemented via smtps (and depreciated), and > > > is essentially just SMTP being wrapped with SSL. TLS has been > > integrated > > > fully into SMTP (forgot the RFC here) via the STARTTLS (STLS in POP3) > > > command. > > > > > > Thus your MTA seems to be coerced into attempting an TLS > > connection (this > > > is advertised w/ the EHLO response)... and it's being denied. Likely > > > because of lack of certificate. If your MTA didn't support TLS at all, > > > you {probably,should} see a different error message. > [snip] > > To answer your original post, i agree, these admins should not expect all > mta's out there to support their stuff and the fact that a user of their > domain is not aware that subscribing to mailing lists will bounce suggests > the admin has 'just done this'. > > IMHO it's lame and theres no need with tools such as rbl etc... Thanks. I'm getting conflicting answers between on-list and off-list. Some say my MTA is misconfigured and should not be attempting TLS without a certificate. Others say the receiving MTA is misconfigured and shouldn't be requiring my server to use TLS. I'm confused. -- Dan Langille pgpkey - finger dan@unixathome.org | http://unixathome.org/finger.php To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message