Monica Mailer no longer working, tries to force TLS? #6820
Comments
|
Apparently this is a known change. It is not a bug. By default Symfony Mailer does peer verification for security reasons. I guess it is a matter of adding a certificate to your SMTP server. It's what I will be doing, as it really is for security. The fact my server is only available to particular containers is unimportant. Forcing security like this isn't a bad thing. |
|
Hi thanks for the response. I have a cert just internally it fail root trust, externally it resolves fine. I only let specfic ips use the relay. Going external involves some setup in and around resolving external domains then hairpin NAT back in before out theough gateway thats not quite working 100% from my docker server. I will start there I supposed, no way to force no ssl/tls right? |
|
It does not look like there is an easy way to force no TLS. I have switched to using a SMTP service (SMTP2Go) since I have only a need for a small amount of outbound email. |
|
Ah okay well anyway to ignore the cert check, again its self signed so I wont be installing a CA internally just to get my exchange server to correctly trust the self signed cert IIS created. I think this is kind of a huge oversight, for internal servers :( |
|
If I am correct, this would be the verify_peer flag, is there any way to supply this hint from docker using env parameters? |
|
this has been a hassle, I have literally spent over 48 hours trying to get this to work with exchange, are there any plans to have this communicate over ews protocols? Being 100% honest 25/465/587 ports wont be around forever, all mail servers are slowly migrating to mail over https/outlook anywhere/etc |
You could install the root certificate from your IIS server. That should work. |
Email federates over port 25 (SMTP). That isn't going anywhere. 465 and 587 are for client to server connection and not for email host to host. |
That would require putting it into the docker, and everytime I rebuild doing it again. I like using ssl termination at proxy for this exact reason! |
Correct about 25 forgot about server to server. But clients are starting to use https over 443 as its open on all clients usually. Anyway to put the ssl_verify_peer into the docker image as an env? So I dont have to ssh in and install nano and edit mail.php everytime I docker-compose up? Thanks! |
|
so email is working when I try to add a user, but today it failed to notify me about a birthday with a yearly reminder, and it was working 2 days ago, doesn't it email day of? or is it just 7 days prior? |
|
Hi, I had this too. i had to solve this by bind mounting my Linux host I was surprised about this, as standards say that an email exchange should downgrade to unencrypted as a last resort. Then I could send a test email. |
|
It's still not working,
Let me know if I can provide more information about my deployment, |
|
@mikekay1 are you using |
Hello @vnghia , Can you elaborate on where that is? I don't believe I have specified that variable in my docker compose. I have just the app and the db in my compose. I missed a clients birthday and now making up for it and thought I could just check the main page every now and then. Long story short that doesn't work I need the emails. |
|
I looked into the issue further, I am not using a cron container and using supervisor, which has cron integrated. so to answer your question -- neither redis, nor async for |
|
Can we just expose the So I can enable it from the docker compose or in an env file? I think its ridiculous that a mailer forces TLS, internally, and does a horrible job at that. I should be able to use a self signed cert that is not verified by a peer. long as its encrypted its fine. it doesn't have to match internal ip's or intranet web addresses. |
|
reopening -- I have a Letsencrypt certificate that matches the domain, and the still receiving the error: STARTTLS: stream_socket_enable_crypto() |
|
Still dont get why this awesome application is at the mercy of a horrible mailer... TLS is working fine and I have no idea why I am getting this error with just this container:
|
|
rebuilt container with: used my old settings life is good now... thank you |
Describe the bug
Used to work with internal mail server now I get and error and it hasn't been sending reminders since :(
Screenshots
What I am seeing in the front end:
If you can, add screenshots to help explain your problem. An image is always helpful.
Docker Compose
Which version are you using:
The text was updated successfully, but these errors were encountered: