• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Disabling TLS for qmail-send

J

jhghjgh hjghgkh

Guest
My server is unable to send mail to a particular remote SMTP server - mail bounces back with 'TLS connection failed' ("(error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol)"). I suspect the remote server is advertising that it supports SSL when in fact it doesn't (my server can use SSL when communicating with other SMTP servers fine).

Is there a way to stop qmail-send from attempting to use TLS when talking to this host? I may even have to go down the route of disabling TLS completely, but can't find a way to do that.

Any thoughts please?
 
I really need to do this as well with an 8.6 system. I have looked all over for information on how to do this. If anyone can help or point me in the right direction it would be appreciated.
 
I'm half way to finding a solution - I should have been reading up on qmail-remote, not qmail-send ...

http://inoa.net/qmail-tls/qmail-remote.txt

notlshosts/<FQDN>
qmail-remote will not try TLS on servers for which
this file exists (<FQDN> is the fully-qualified
domain name of the server). (tlshosts/<FQDN>.pem
takes precedence over this file however).
Click to expand...

Going to try that shortly...
 
I'm guessing this didn't end up working? I can't find any reference to notlshosts in the qmail-remote binary that Plesk bundles so I'm thinking they're not using that specific TLS patch.
 
Same problem here.. Has anyone solved this one yet?

qmail: 1436649830.795551 delivery 3: deferral: TLS_connect_failed:_error:14082174:SSL_routines:SSL3_CHECK_CERT_AND_ALGORITHM:dh_key_too_small;_connected_to_69.94.125.39./
 
You need to switch to postfix; the qmail-send included with Plesk has numerous issues on today's internet; sslv3, dh keys <1024, all email goes out the first ip, etc.
 
You must log in or register to reply here.

Similar threads

M
Issue Mail issue: Remote server returned '554 5.7.4 < # 5.7.4 SMTP; 554 5.7.4 failed to deliver message via SSL/TLS. >' -lost connection after STARTTLS from
Replies
1
Views
845
scsa20
scsa20
H
Resolved Problem with install Let's Encrypt SSL/TLS certificate
Replies
6
Views
2K
HungLuu
H
Polli
Issue Mails only possible with a wildcard certificate
Replies
5
Views
611
Polli
Polli
Polli
Issue Getting DANE working
2
Replies
33
Views
4K
Polli
Polli
P
Question HTTP service has been identified without SSL/TLS
Replies
1
Views
798
scsa20
scsa20
Back
Top