-
Notifications
You must be signed in to change notification settings - Fork 2.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Bug] smtp.icoremail.net:465 fail to send mail alert due to 'does not advertise the STARTTLS extension' #980
Comments
Using port 465 enters a hardcoded path that attempts to use TLS: https://github.com/prometheus/alertmanager/blob/master/notify/impl.go#L275-L285 For historical reasons, this port is supported with SSL but port 587 should be used instead if possible. See the post here: http://blog.mailgun.com/25-465-587-what-port-should-i-use/ |
@stuartnelson3 , hi, icoremail just provide 465 port with ssl protocol, not TLS!... |
SSL was superceded by TLS back in 1999 (name was changed). If your provider is nearly 20 years behind on protecting connections, it might be time to change. |
@stuartnelson3 but in china most providers still use ssl,WTF |
…etheus#980) Signed-off-by: neiledgar <neil.edgar@btinternet.com>
@simonpasquier Thanks, that works. I have tested gmail(port 587) and another mail provider (port 465 with ssl), everything goes fine. |
@chanjarster Hi,我想问一下你这个邮箱是什么,我用阿里的邮箱465不能发送「err="*smtp.plainAuth failed: wrong host name"」 |
Replace the |
@chanjarster tks, I have tried but it didn't work. I used tencent email port 587 |
RFC 8314 requires that SMTP connections to port 465 use TLS (not STARTTLS). STARTTLS on 587 should still be supported but is deprecated. PLAIN auth was fixed in 352b2ae (released in v0.16.0) which allows forced TLS via port 465 to work. It should be possible to use port 465 now.
|
Facing similar issue, AWS SES giving below error,
Tried, required_tls: flase, then getting below error,
Working fine with Gmail SMTP. |
Looking at the SES documentation, I would try either: |
@simonpasquier I have tried both, facing same issue,
|
Hmm, |
@karthikeayan I've done some tests with the email notifier recently and a few things can be improved (see #1953). In particular the |
@simonpasquier thank you, will test it once available in next release |
@karthikeayan - just wanted to share I was experiencing the same thing with AWS SES and it ended up being because of the credentials being provisioned for the wrong region. |
@ilyache thank you! I spent another 2 hours to find this, turns out to be AWS access keys will not work here. We need to create SMTP credentials from AWS Console which is similar to AWS access keys.
|
Tencent mail can work normally using port 587 |
Closing the issue because there's no evidence that it's a problem with Alertmanager. If you struggle to setup the email integration, please use our user mailing list or IRC channel (#prometheus). |
this work for me. i use *.qiye.163.com |
Here is my config:
Then start service It could not send alert mail with following error:
So, i modify require_tls to false, so I receive message error like
When changed to gmail , no error , no exception happened. so , I wander does it not supporting icoremail ?
The text was updated successfully, but these errors were encountered: