Plesk send Email TLS를 사용할 수 없습니다.

Question

Plesk에서 메일.

# See /usr/share/postfix/main.cf.dist for a commented, more complete version 


# Debian specific: Specifying a file name will cause the first 
# line of that file to be used as the name. The Debian default 
# is /etc/mailname. 
#myorigin = /etc/mailname 

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU) 
biff = no 

# appending .domain is the MUA's job. 
append_dot_mydomain = no 

# Uncomment the next line to generate "delayed mail" warnings 
#delay_warning_time = 4h 

readme_directory = no 

# TLS parameters 
smtpd_tls_cert_file = /etc/postfix/tls/httpsd.pem 
smtpd_tls_key_file = $smtpd_tls_cert_file 
smtpd_use_tls = yes 
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache 
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache 

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for 
# information on enabling SSL in the smtp client. 

myhostname = ***DOMAIN*** 
alias_maps = hash:/etc/aliases, hash:/var/spool/postfix/plesk/aliases 
alias_database = hash:/etc/aliases 
myorigin = /etc/mailname 
mydestination = localhost.startdedicated.de, localhost, localhost.localdomain 
relayhost = 
mynetworks = 127.0.0.0/8 [::1]/128 **IP**/32 
mailbox_command = procmail -a "$EXTENSION" 
mailbox_size_limit = 0 
recipient_delimiter = + 
inet_interfaces = all 
inet_protocols = all 
virtual_mailbox_domains = $virtual_mailbox_maps, hash:/var/spool/postfix/plesk/virtual_domains 
virtual_alias_maps = $virtual_maps, hash:/var/spool/postfix/plesk/virtual 
virtual_mailbox_maps = , hash:/var/spool/postfix/plesk/vmailbox 
transport_maps = , hash:/var/spool/postfix/plesk/transport 
smtpd_tls_security_level = may 
smtp_tls_security_level = may 
smtp_use_tls = no 
smtpd_timeout = 3600s 
smtpd_proxy_timeout = 3600s 
disable_vrfy_command = yes 
smtpd_sender_restrictions = check_sender_access hash:/var/spool/postfix/plesk/blacklists, permit_sasl_authenticated 
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated 
smtp_send_xforward_command = yes 
smtpd_authorized_xforward_hosts = 127.0.0.0/8 [::1]/128 
smtpd_sasl_auth_enable = yes 
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination 
virtual_mailbox_base = /var/qmail/mailnames 
virtual_uid_maps = static:30 
virtual_gid_maps = static:31 
smtpd_milters = , inet:127.0.0.1:12768 
non_smtpd_milters = 
sender_dependent_default_transport_maps = hash:/var/spool/postfix/plesk/sdd_transport_maps 
virtual_transport = plesk_virtual 
plesk_virtual_destination_recipient_limit = 1 
mailman_destination_recipient_limit = 1 
virtual_mailbox_limit = 0 
message_size_limit = 31457280 

내가 리눅스 및 우편에 전문가를하지 않을 것을 말해야한다 :

그러나 나는이 대답을 여기에

Out: 220 **DOMAIN** ESMTP Postfix (Debian/GNU) 
In:  EHLO [10.33.205.183] 
Out: 250-**DOMAIN** 
Out: 250-PIPELINING 
Out: 250-SIZE 31457280 
Out: 250-ETRN 
Out: 250-STARTTLS 
Out: 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 
Out: 250-ENHANCEDSTATUSCODES 
Out: 250-8BITMIME 
Out: 250 DSN 
In:  STARTTLS 
Out: 454 4.7.0 TLS not available due to local problem 
In:  ??? 
Out: 502 5.5.2 Error: command not recognized 
In:  ?????(?'?????? 
Out: 502 5.5.2 Error: command not recognized 
In:  ???? 
Out: 502 5.5.2 Error: command not recognized 
Out: 421 4.4.2 **DOMAIN** Error: timeout exceeded 

Session aborted, reason: timeout 

For other details, see the local mail logfile 

을받을 내 main.cf입니다!

구성 파일은 다음 위치에 있습니다. /etc/postfix/main.cf cert /etc/postfix/tls/httpsd.pem은 서버 기본 인증서입니다.

감사합니다.

Answer 1

TL : 나쁜 클라이언트와 잘못된 서버.

사용하는 메일 서버가 TLS (STARTTLS가 포함 된 EHLO에서 볼 수 있음)와 같지만 실제로 TLS (클라이언트가 TLS를 사용하려고 할 때 오류)를 사용하지 못하는 것으로 잘못 인식되도록 구성되었습니다. 또한 클라이언트는 STARTTLS 명령에 대한 오류 메시지를 무시하고 TLS 핸드 셰이크를 계속합니다. 이로 인해 적절한 SMTP 명령을 예상하지만 대신 가비지 (TLS ClientHello)처럼 보이는 서버에서 오는 오류 메시지가 발생합니다.