postfix + tls

[miah]

SSL can operate over 25/tcp, but the user has to issue a STARTTLS command.  I'm betting here that the host he's telnet'ing from isnt resolving and he's got postfix setup to not work with hosts that dont resolve, or some other issue thats not related to SSL/SASL.  The only reason you need to run SMTP over SSL (as with 465/tcp) is for broken clients that don't issue a STARTTLS (like older versions of outlook), these clients try to establish a ssl connection to the host and then issue smtp commands.

-miah

On Wed, Apr 14, 2004 at 12:45:21PM -0400, Chris Devers wrote:
> On Wed, 14 Apr 2004, Bill Holt wrote:
> 
> > Hello, I am using cyrus imap and postfix smtp, and all was well, then
> > I decided to add tls support, now when I test it (telnet localhost 25)
> > It connects but I cannot get a response to any commands:ie: ehlo
> > localhost
> 
> If you're now using SSL encrypted SMTP, are you still using the standard
> SMTP port 25? My copy of /etc/services suggests that SSMTP (SMTP over
> SSL) uses port 465, not 25. Have you tried that?
> 
> 
> -- 
> Chris Devers