View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0001541 | Main CAcert Website | my account | public | 2022-07-04 15:56 | 2022-07-07 15:09 |
| Reporter | egal | Assigned To | egal | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | solved? | Resolution | fixed | ||
| Platform | Default | OS | any | OS Version | any |
| Summary | 0001541: ping-testmails are rejected due to wrong IP-adress | ||||
| Description | previously www.cacert.org was running on sun2 with a direct internet-connection ... ... during the transition to sun1 is behind the firewall and the direct connection was removed. when trying to deliver the ping-mail, www.cacert.org send in SMTP-commands: EHLO www.cacert.org as this does not match the IPv4 or IPv6-address of www.cacert.org, the mailserver on remote site rejects the mail: postfix/smtpd[897930]: NOQUEUE: reject: RCPT from unknown[2001:7b8:616:*:*::11]: 450 4.7.25 Client host rejected: cannot find your hostname, [2001:7b8:616:*:*::11]; from=<returns@cacert.org> to=<*@*.me> proto=ESMTP helo=<www.cacert.org> possible solutions: (1) change hostname in general.php to "something else", so the name/ip-adress-pair could be added to nameservers (2) deliver ping-emails via postfix/emailout, but in this case the user will not get a direct feedback, if the ping-mail could not be sent | ||||
| Steps To Reproduce | try to add new email-adress to existing account when the target mailserver is verifiying hostnames/... | ||||
| Tags | mail, webdb | ||||
| Reviewed by | egal, Ted | ||||
| Test Instructions | |||||
|
|
The attached patch changes the EHLO name from www.cacert.org to ping.cacert.org ping-test-mail.patch (718 bytes)
--- general.php.orig 2022-07-04 19:03:17.667933692 +0200
+++ general.php 2022-07-04 19:04:19.172175270 +0200
@@ -612,7 +612,7 @@
continue;
}
- fputs($fp, "EHLO www.cacert.org\r\n");
+ fputs($fp, "EHLO ping.cacert.org\r\n");
do {
$line = fgets($fp, 4096);
$has_starttls |= substr(trim($line),4) == "STARTTLS";
@@ -634,7 +634,7 @@
stream_socket_enable_crypto($fp, true, STREAM_CRYPTO_METHOD_TLSv1_0_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT|STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT);
- fputs($fp, "EHLO www.cacert.org\r\n");
+ fputs($fp, "EHLO ping.cacert.org\r\n");
do {
$line = fgets($fp, 4096);
} while(substr($line, 0, 4) == "250-");
|
|
|
hostname of server in EHLO-command was changed, no other change was done a test on test.cacert.org is not possible in this case due to other hostname (and behaviour for testing) on this server ready for deployment on webdb/sun1-server (as this a minor text-change and no change in coding, no second review is needed) |
|
|
please deploy on productive server |
|
|
the patch has been deployed on webdb1 |
|
|
Just in case anybody cares, I can also give a passed review to this change. |
|
|
committed as https://code.cacert.org/cacert/cacert-webdb/commit/9140217aa70f42b55a105c90641ace5d04dd6ff6 |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2022-07-04 15:56 | egal | New Issue | |
| 2022-07-04 15:56 | egal | Assigned To | => jandd |
| 2022-07-04 15:56 | egal | Tag Attached: mail | |
| 2022-07-04 15:56 | egal | Tag Attached: webdb | |
| 2022-07-04 17:08 | jandd | Note Added: 0006116 | |
| 2022-07-04 17:08 | jandd | File Added: ping-test-mail.patch | |
| 2022-07-04 17:08 | jandd | Status | new => needs review & testing |
| 2022-07-04 17:09 | jandd | Assigned To | jandd => egal |
| 2022-07-04 17:23 | egal | Reviewed by | => egal |
| 2022-07-04 17:23 | egal | Note Added: 0006117 | |
| 2022-07-04 17:24 | egal | Assigned To | egal => jandd |
| 2022-07-04 17:24 | egal | Status | needs review & testing => ready to deploy |
| 2022-07-04 17:24 | egal | Note Added: 0006118 | |
| 2022-07-04 17:28 | egal | Note Edited: 0006117 | |
| 2022-07-04 18:30 | jandd | Assigned To | jandd => egal |
| 2022-07-04 18:30 | jandd | Status | ready to deploy => solved? |
| 2022-07-04 18:30 | jandd | Resolution | open => fixed |
| 2022-07-04 18:30 | jandd | Note Added: 0006119 | |
| 2022-07-05 18:00 | Ted | Note Added: 0006120 | |
| 2022-07-05 18:01 | Ted | Reviewed by | egal => egal, Ted |
| 2022-07-07 15:09 | jandd | Note Added: 0006122 |
