Date: Tue, 29 Nov 2016 10:49:45 -0500 From: George Mitchell <george+freebsd@m5p.com> To: Gregory Shapiro <gshapiro@freebsd.org> Cc: freebsd-hackers@FreeBSD.org Subject: Re: Sendmail and STARTTLS Message-ID: <66835790-9aea-c658-cd6b-09cd792edb62@m5p.com> In-Reply-To: <2c7a5fc1-5946-1221-816f-b68079a42078@m5p.com> References: <f4ee7a4c-8b8c-2542-20ba-7ef0a42313fa@m5p.com> <20161128183554.GA6716@c02pp3c3fvh8.corp.proofpoint.com> <2c7a5fc1-5946-1221-816f-b68079a42078@m5p.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 11/28/16 14:19, George Mitchell wrote: > [...] >>> What am I doing wrong? How can I enter VERIFY=YES nirvana? -- George > [...] Okay, I have convinced myself that I am misinterpreting what my mail log is telling me. I did a packet capture of the last email message I received from mx2.freebsd.org, and even though the STARTTLS entry tells me "VERIFY=FAIL", the headers and content of the email were encrypted anyway. It's just that either mx2.freebsd.org couldn't verify that mailhost.m5p.com is really mailhost.m5p.com, or the other way around. That's annoying, but the main point of the exercise wasto encrypt the data, and that's what is happening. So I'm happier now, though at some point I would like the identify verification to work correctly as well. Baby steps ... -- George
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?66835790-9aea-c658-cd6b-09cd792edb62>