On Tue, Nov 12, 2013 at 05:35:16PM +0000, Tony Finch wrote:
> Since turning on TLS we have had some interop problems which appear in our
> logs like:
>
> 2013-11-12 16:47:44 +0000 1VgH6w-0007ss-QB
> == tls.interop.test@???
> R=dnslookup T=smtp defer (-18):
> Remote host mail.stratton.beds.sch.uk [85.12.84.41]
> closed connection in response to MAIL FROM:<fanf2@???> SIZE=1439
>
> I can reproduce this with openssl:
>
> $ /opt/OpenSSL-1.0.1e+0/bin/openssl s_client -crlf -starttls smtp -connect mail.stratton.beds.sch.uk:25
See
http://archives.neohapsis.com/archives/postfix/2013-11/0121.html
The Exchange servers in question are woefully under-maintained.
They either need TLS hot-fixed, or much better an O/S upgrade to
Windows Server 2008R2 or later.
--
Viktor.
