sendmail client authentication failed with TLS

When sending mail with sendmail to a providers SMTP-server authentication was not done because STARTTLS disabled advertising authorization methods on the server side.

Authenticated SMTP is almost mandatory nowadays. But sendmail's AUTH implentation failes when the provider's mail server uses qmail and has STARTTLS enabled.

This is because when a SMTP-server offers TLS sendmail always use STARTTLS to use it. But qmail's EHLO does not show the available authication modes when in TLS mode - sendmail does not authenticate and mail relaying is denied.

The trick is to disable TLS for this specific server in sendmail. This is only possible with the access-db FEATURE and an access rule like:
Try_TLS:smtp.myprovider.com NO
which disables TLS and make sendmail's client AUTH work.

Categories

• apache (2)
• apple (1)
• email (1)
• hardware (2)
• linux (2)
• magento (1)
• math philosophy (1)
• network (3)
• openvz (2)
• oracle (1)
• performance (2)
• rails (2)
• security (2)

Archive

• April 2013 (1)
• July 2010 (2)
• May 2010 (1)
• March 2010 (1)
• February 2010 (1)
• November 2009 (3)
• October 2009 (3)

Links

• wirt: - advanced hosting
• mc - spreadsheet for Unix

Copyright © 2019 Axel Reinhold. Powered by wirt:.