Mailing List CGatePro@mail.stalker.com Message #93994
From: Urban Loesch <bind@enas.net>
Subject: Re: Send Encrypted (SSL/TLS)
Date: Thu, 07 Feb 2008 17:54:43 +0100
To: CommuniGate Pro Discussions <CGatePro@mail.stalker.com>
Hi,

not sure if you have received any anwser.

I tried a telnet connection to  mail2.hydroone.com.

[uloeu@rol004 ~]$ telnet mail2.hydroone.com 25
Trying 192.75.118.20...
Connected to mail2.hydroone.com.
Escape character is '^]'.
220 Unauthorized access is strictly forbidden !!! (Ref:C)
...

The manual of CGP says:

-- snip --

Always use EHLO
   If this option is selected, the SMTP module always sends the EHLO
   command to remote servers, trying to establish the extended SMTP
   (ESMTP) protocol.
   If this option is not selected, the SMTP module checks the remote
   server greeting line. The SMTP module sends the EHLO command only if
   this line contains the ESMTP word.

-- snip --

The greetingline of "mail2.hydroone.com" does not contain the ESMTP word.

Regards
Urban


Jeff Wark wrote:
I was just attempting to set the Send Encrypted settings for a specific domain one of our other departments is having trouble sending to.

When I put the domain [hydroone.com] in the box, update it and send a message, I get the following:

10:47:08.78 4 SMTP-23081(hydroone.com) resolving 'mail2.hydroone.com'
10:47:08.78 4 SMTP-23081(hydroone.com) connecting to [192.75.118.20]
10:47:13.26 4 SMTP-23081(hydroone.com) connected to mail2.hydroone.com [192.75.118.20:25]
10:47:13.26 4 SMTP-23081(hydroone.com) cmd: HELO tbaytel.net
10:47:13.94 4 SMTP-23081(hydroone.com) rsp: 250 +OK SMTP server Ready
10:47:13.94 4 SMTP-23081(hydroone.com) Connected.
10:47:13.94 1 SMTP-23081(hydroone.com) relay mail2.hydroone.com does not support STARTTLS
10:47:13.94 4 SMTP-23081(hydroone.com) closing connection
10:47:13.94 4 SMTP-23081(hydroone.com) releasing stream


It reports that it does not support TLS.  But our server just sent the greeting with the 'HELO' string instead of the 'EHLO' string.  When I connect manually and present the EHLO string to the other server I get a response indicating that they support the STARTTLS command.

Is our server [5.0.13] behaving incorrectly by not presenting the EHLO command?  I remember setting this globally a couple years ago and it seemed to work fine sending emails with TLS.

Thanks.

Jeff Wark
TBayTel Internet

#############################################################
This message is sent to you because you are subscribed to
 the mailing list <CGatePro@mail.stalker.com>.
To unsubscribe, E-mail to: <CGatePro-off@mail.stalker.com>
To switch to the DIGEST mode, E-mail to <CGatePro-digest@mail.stalker.com>
To switch to the INDEX mode, E-mail to <CGatePro-index@mail.stalker.com>
Send administrative queries to  <CGatePro-request@mail.stalker.com>


Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster