2 Server have the same domain, using third party DNS Management.
Server Sending: already disable "Use this server to handle my e-mails."
"hostname.domain.name" is Target Server.
"mail.domain.name" is Target Server.
MX record is point to "mail.domain.name".
The email can receive normally, it just report error SSL verify fail.
If I point MX record to "hostname.domain.name", it's not report error anymore.
#### test using openssl, show the correctly cert.
Server Sending: already disable "Use this server to handle my e-mails."
Code:
asdsad****sad* [*.*.*.*] SSL verify error (during S-verify for [NULL]): certificate name mismatch: DN="/CN=hostname.domain.name" H="mail.domain.name""hostname.domain.name" is Target Server.
"mail.domain.name" is Target Server.
MX record is point to "mail.domain.name".
The email can receive normally, it just report error SSL verify fail.
If I point MX record to "hostname.domain.name", it's not report error anymore.
#### test using openssl, show the correctly cert.
Code:
]# openssl s_client -connect mail.domain.name:25 -servername mail.domain.name -starttls smtp
-----END CERTIFICATE-----
subject=CN=*.domain.name
issuer=C=US, O=Let's Encrypt, CN=E7
---
No client certificate CA names sent
Peer signing digest: SHA384
Peer signature type: ecdsa_secp384r1_sha384
Peer Temp Key: X25519, 253 bits
---
SSL handshake has read 2759 bytes and written 443 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Protocol: TLSv1.3
Server public key is 384 bit
This TLS version forbids renegotiation.
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
Last edited: