I try to send an email from my METEOR server as described:
https://docs.meteor.com/api/email.html
But i want to send emails without authentication. I have no username and password. If i try MAIL_URL=smtp://#relay.xy.xxxxx.com:578 without username and password i get the error:
unable to verify the first certificate.
Is it possible to set a parameter like "SMTPAuth=false" as in PHP?
Try removing the # in the URL, that might help.
You are specifying port 578, which is a secure port, so it's probably trying to establish a TLS session with your server, which might not have a legitimate SSL certificate, which is likely to be causing this error message.
You know that if you have an email server that will accept unauthorised send requests, that a bot will find it, and then pour spam through it?
Related
How do these online services of spoof email work?
They usually require the from domain really exists. It means there is a smtp server which accepts the connection.
Let's say I send a mail from test#xxx.com. The site will try to connect to the xxx.com smtp server and it will deliver the message.
The questions are:
How it is able to find the xxx.com domain smtp server?
To correctly deliver the message, xxx.com has to be without authentication. However, also with a fake gmail.com domain, the email is correctly sent, even though Gmail requires auth.
I don't know if I am asking this in the right place.
I have an SSL cert for my website, and I am trying to setup a mail server (same domain) using the same cert.
I am using Postfix and Dovecot. When I try logging in from Evolution mail client, I get an error "Peer failed to perform TLS handshake". When I try an online service to verify I get "Recipient address rejected: User unknown in local recipient table."
I guess my actual question is, can I actually use the same SSL cert for my website and my email server?
What do I do to debug next?
You can use a certificate you have for the web server also for your mail server as long as it matches the hostname you use to access your mail server. Of course the certificate need to properly setup at the mail server, i.e. include the necessary intermediate certificates similar to how it is (hopefully) setup on the web server.
I am using Postfix and Dovecot.
This means you need to take care of multiple configurations, both for SMTP in Postfix and IMAP/POP3 (whatever you use) in Dovecot. And in all cases the certificates subject/SAN must match the hostname you use to connect to the server.
When I try logging in from Evolution mail client, I get an error "Peer failed to perform TLS handshake".
There are not enough information about this setup to find out what exactly is causing the TLS error. It is not even clear if the error is caused when retrieving mail (IMAP/POP3, i.e. Dovecot) or while sending (Postfix).
When I try an online service to verify I get "Recipient address rejected: User unknown in local recipient table."
This has nothing to do with TLS at all. The test server simply tried to use a recipient which your mail server (Postfix) will not accept.
What do I do to debug next?
The next steps would probably be to check if the certificate matches the names you use in the first place and to look into log files for error messages or warnings. Following steps depend on what the result of these steps is.
I'm using Node-RED in IBM's Bluemix. There are nodes to get email in and send email out. However, the email credentials do not seem to be encrypted when sent over the internet. I'm a bit concerned about that. Is there a way to find email receive and email send nodes for Node-RD where they login to the email server using TLS (or SSL)?
If you configure the email nodes to point at SSL/TLS ports then they will connect via a secure channel.
Also I believe that if the mail servers support the STARTTLS command then they will upgrade the connection once connected.
I am using google apps for email. I can send email out through c# code fine with smtp.gmail.com.
I would like to be able to use the name smtp.mydomain.com instead, but still have it go to smtp.gmail.com. I tried just seeing a CNAME in my DNS settings, but I get this error:
"The remote certificate is invalid according to the validation procedure."
Any ideas?
Thanks.
Yes, you can't, the TLS certificate used to communicate privately with the remote SMTP server is signed with smtp.gmail.com. The only solution is to create a SMTP relay with sendmail for example on your own server.
I have problem sending emails, i checked the email sending error logs, and I found this:
RCPT RCPT TO:
503 This mail server requires authentication when attempting to send to a non-local e-mail address. Please check your mail client settings or contact your administrator to verify that the domain or address is defined for this server.
And this:
Sending unsolicited commercial or bulk e-mail to Microsoft's computer network is prohibited. Other restrictions are found at http://privacy.msn.com/Anti-spam/. Violations will result in use of equipment located in California and other states.
And following I dont understand what it means:
DATA DATA 354+Start+mail+input;+end+with+.
RCPT RCPT TO: 250 Requested mail action okay, completed
and some others...
This SMTP server requires authentication. Depending on your provider, you either need to specify username/password or, if your host uses POP-before-SMTP auth, you need to check your email first and that action adds you to an authenticated list for some time so you can send replies.
This error means you need to authenticate against your SMTP server before sending out emails.