ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Unsolved can't send email with postfix

    IT Discussion
    4
    18
    934
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Mike DavisM
      Mike Davis
      last edited by

      I didn't scroll far enough down in the maillog with the first error. Now I'm getting:

      Dec  7 14:01:26 fax postfix/cleanup[14516]: 94AC2434A2E: message-id=<20161207190126.94AC2434A2E@fax.<domain>.com>
Dec  7 14:01:26 fax postfix/qmgr[13995]: 94AC2434A2E: from=<>, size=2222, nrcpt=1 (queue active)
Dec  7 14:01:26 fax postfix/bounce[14529]: 4454F434A2F: sender non-delivery notification: 94AC2434A2E
Dec  7 14:01:26 fax postfix/qmgr[13995]: 4454F434A2F: removed
Dec  7 14:01:26 fax postfix/smtp[14524]: certificate verification failed for mail.<domain>.com: num=7:certificate signature failure
Dec  7 14:01:26 fax postfix/smtp[14524]: certificate verification failed for mail.<domain>.com: num=7:certificate signature failure
Dec  7 14:01:26 fax postfix/smtp[14524]: 94AC2434A2E: to=<fax@<domain>.com>, relay=mail.<domain>.com[xx.xx.202.47]:587, delay=0.2, 
delays=0.01/0/0.16/0.02, dsn=5.7.1, status=bounced (host mail.<domain>.com[xx.xx.202.47] said: 
530 5.7.1 Client was not authenticated (in reply to MAIL FROM command))
Dec  7 14:01:26 fax postfix/qmgr[13995]: 94AC2434A2E: removed

      So I can tell it's using port 587 now which means it's using the new /etc/postfix/main.cf file, but still fails.

      wirestyle22W 1 Reply Last reply Reply Quote 0
      • wirestyle22W
        wirestyle22 @Mike Davis
        last edited by

        @Mike-Davis said in can't send email with postfix:

        certificate verification failed

        That's an SSL cert error

        1 Reply Last reply Reply Quote 1
        • Mike DavisM
          Mike Davis
          last edited by

          so follow this:
          http://ageekandhisblog.com/how-to-fix-postfixsmtp-certificate-verification-failed-untrusted-issuer/

          wirestyle22W 2 Replies Last reply Reply Quote 1
          • wirestyle22W
            wirestyle22 @Mike Davis
            last edited by

            @Mike-Davis I found this: http://giantdorks.org/alain/fix-for-postfix-untrusted-certificate-tls-error/ but yeah. Should be more or less the same

            1 Reply Last reply Reply Quote 0
            • wirestyle22W
              wirestyle22 @Mike Davis
              last edited by wirestyle22

              @Mike-Davis Mine seems easier. Might want to try it before you get into yours. Could be just that simple

              1 Reply Last reply Reply Quote 0
              • Mike DavisM
                Mike Davis
                last edited by

                I do have /etc/ssl/certs, but not /var/spool/postfix/etc/ssl/certs/
                In /etc/postfix/main.cf, it has the line:

                smtp_tls_CAfile = /etc/postfix/cacert.pem

                I thought this command was supposed to fix that:

                cat /etc/ssl/certs/Thawte_Premium_Server_CA.pem | sudo tee -a /etc/postfix/cacert.pem

                under /etc/ssl/certs they are all from 2008. Could that be the problem?

                wirestyle22W 1 Reply Last reply Reply Quote 0
                • wirestyle22W
                  wirestyle22 @Mike Davis
                  last edited by wirestyle22

                  @Mike-Davis Possibly? We're reaching the end of my knowledge unfortunately.

                  1 Reply Last reply Reply Quote 0
                  • Mike DavisM
                    Mike Davis
                    last edited by

                    Ran:

                    update-ca-certificates

                    and that updated the dates on all the files under /etc/ssl/certs

                    Then:

                    cat /etc/ssl/certs/Thawte_Premium_Server_CA.pem | sudo tee -a /etc/postfix/cacert.pem
sudo /etc/init.d/postfix reload
                    wirestyle22W 1 Reply Last reply Reply Quote 1
                    • wirestyle22W
                      wirestyle22 @Mike Davis
                      last edited by

                      @Mike-Davis Did that end up fixing your issue?

                      1 Reply Last reply Reply Quote 0
                      • Mike DavisM
                        Mike Davis
                        last edited by Mike Davis

                        I have to have them send a test fax through. Given that it's 2016 it might be a while before we can find someone with a fax service....

                        DustinB3403D 1 Reply Last reply Reply Quote 1
                        • DustinB3403D
                          DustinB3403 @Mike Davis
                          last edited by

                          @Mike-Davis I have a fax.. but you could setup a test fax service with any online provider and see if it receives the fax they send to it.

                          1 Reply Last reply Reply Quote 1
                          • Mike DavisM
                            Mike Davis
                            last edited by

                            Test failed. Same error as before. I'm going to see if it's because a CNAME was set up for the receiving mail server and the name doesn't match the cert or something.

                            1 Reply Last reply Reply Quote 0
                            • scottalanmillerS
                              scottalanmiller
                              last edited by

                              Instead of testing emails with a fax, get the email working itself first. Work on sending emails directly, once that is working, add in the fax piece. That will make this a ton easier to test.

                              1 Reply Last reply Reply Quote 3
                              • 1 / 1
                              • First post
                                Last post