• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Plesk+qmail, TLS fallback

poppsworld.com

poppsworld.com

Basic Pleskian
Hello all,

is there any possibility to implement an non-TLS fallback for qmail if sending emails via SMTP+TLS fails?

On Centos 6.5, after running the latest openssl-update we get errors in /usr/local/psa/var/log/maillog when sending emails via TLS to some servers:

Code: 
Jul 29 06:56:26 bender qmail: 1406609786.783037 delivery 1572: deferral: TLS_connect_failed;_connected_to_XXX.XXX.XXX.XXX./
Jul 29 06:56:26 bender qmail: 1406609786.783066 status: local 0/10 remote 1/20
Jul 29 06:56:26 bender qmail: 1406609786.796430 delivery 1573: deferral: TLS_connect_failed;_connected_to_XXX.XXX.XXX.XXX./
Jul 29 06:56:26 bender qmail: 1406609786.796459 status: local 0/10 remote 0/20

Since the "TLS_connect_failed" happens every time the server tries to connect, the emails stay in the qmail-queue until their lifetime is reached...

Despite the fact, that we have to get rid of this error it would be useful to have a fallback-mechanism like in postfix, which seems to send emails without tls... if tls-encryption fails.

Is it possible to implement that in qmail+plesk?

Thanks for your help and

Best regards
Lars
 
Last edited:
hi Emmanuel,

it's quite some time ago since I ran into the problem: As far as I can remember I fixed the issue by identifying the ciphers supported by CentOS's OpenSSL-Package, writing it to the qmail-files:

openssl ciphers > /var/qmail/control/tlsserverciphers
openssl ciphers > /var/qmail/control/tlsclientciphers

Afterwards i removed some ciphers from that files, which caused the problems. BUT since I don't know if you are having the same config/problem... that might not help for you.

Best regards,
Lars
 
You must log in or register to reply here.

Similar threads

Erwin Fiten
Question Spam sent from my server by other hosts ???
Replies
4
Views
564
Bitpalast
Bitpalast
mapodec
Resolved Emails sent from Plesk accounts are not delivering only to Google Workspace
Replies
2
Views
691
mapodec
mapodec
Bitpalast
Forwarded to devs Spamassassin ignores mails to mailboxes that contain an ampersand, e.g. d&s@recipientdomain.tld
Replies
9
Views
2K
Bitpalast
Bitpalast
EnriqueR
Question Incoming mail is stored in Junk folder
Replies
6
Views
988
EnriqueR
EnriqueR
S
Issue SMTP/Qmail stop working suddenly without any cause
Replies
3
Views
2K
Stephen_Stephen
S
Back
Top