MAIL_URL for localhost smtp server and TLS

ggerber · May 8, 2017, 11:58am

Hi,
My MAIL_URL=smtp://mydomain.com
I get the following error when Accounts.sendVerificationEmail() is executed:

May 08 11:36:54 h2 h2o4[1916]: events.js:160
May 08 11:36:54 h2 h2o4[1916]:       throw er; // Unhandled 'error' event
May 08 11:36:54 h2 h2o4[1916]:       ^
May 08 11:36:54 h2 h2o4[1916]: Error: connect ECONNREFUSED 127.0.1.1:25
May 08 11:36:54 h2 h2o4[1916]:     at Object.exports._errnoException (util.js:1018:11)
May 08 11:36:54 h2 h2o4[1916]:     at exports._exceptionWithHostPort (util.js:1041:20)
May 08 11:36:54 h2 h2o4[1916]:     at TCPConnectWrap.afterConnect [as oncomplete] (net.js:1086:14)

I am using meteor 1.4.4.1, have signed certificates from letsencrypt and a working postfix smtp server, which successfully sends mail to my gmail account when running:
echo “test” | mail -s “test” me@gmail.com

I think it is because I do not supply a username and password. However, the mail server does not require a username/password, because it only accepts mail from clients on the same machine 127.0.0.1/8. Node/meteor is hosted on the same machine.

I have tried the following as well:
MAIL_URL=smtp://localhost
Error: Hostname/IP doesn;t match certificates altnames: :Host: localhost is not in the cert’s altnames: DNS:mydomain.com"

MAIL_URL=mydomain.com
Error: Email protocol in $MAIL_URL (mydomain.com) must be ‘smtp’ or ‘smtps’

How should meteor connect/email with a mail server hosted on the same machine?

ggerber · May 8, 2017, 6:31pm

This is a catch 22 for me.
If I dont use a cert then MAIL_URL=smtp://localhost will work
If I have a cert, then I am forced to specify MAIL_URL with a hostname/IP that matches my cert (ie smtp://mydomain.com). However, I then get the ECONNREFUSED error.

MAIL_URL=smtp://127.0.1.1 also gives an ECONNREFUSED error

This is my /etc/postfix/main.cf:

```
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
myhostname = mydomain.com
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname, localhost.$mydomain, $mydomain, localhost
relayhost =
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = loopback-only
inet_protocols = all
smtp_tls_security_level = may
smtp_tls_loglevel = 1
smtpd_tls_loglevel = 1
smtpd_tls_security_level = may
smtpd_tls_protocols = !SSLv2, !SSLv3
```

Any advice?