Followed that thread through which ended up
here. However, in those instructions, the following command failed on my system:
Code:
root@node:~# cp /opt/zimbra/ssl/ssl/server/tomcat.pem /opt/zimbra/conf/smtpd.crt
cp: cannot stat `/opt/zimbra/ssl/ssl/server/tomcat.pem': No such file or directory
Regardless, I restarted zimbra and now get:
Code:
Nov 20 14:38:52 node postfix/smtpd[20409]: warning: cannot get private key from file /opt/zimbra/conf/smtpd.key
Nov 20 14:38:52 node postfix/smtpd[20409]: warning: TLS library problem: 20409:error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch:x509_cmp.c:399:
Nov 20 14:38:52 node postfix/smtpd[20409]: cannot load RSA certificate and key data
...which I expected. So I redployed the mta certificate as per the original wiki article and now am back to the original error. Strangley the "starttls" command returns a 220:
Code:
$ telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 node.gray.net.au ESMTP Postfix
ehlo localhost
250-node.gray.net.au
250-PIPELINING
250-SIZE 10485760
250-VRFY
250-ETRN
250-STARTTLS
250 8BITMIME
STARTTLS
220 Ready to start TLS
I've googled this up the whazoo for 48 hours now, and still can't find any answers.