error 80090330 starting STARTLS inbound (SSL)

Discussion forum for Enterprise Edition.
Post Reply
thatanos
Posts: 4
Joined: Tue Aug 19, 2014 10:57 am

error 80090330 starting STARTLS inbound (SSL)

Post by thatanos »

Hello, first of all I have read all the Kb and the forum looking for a solution without any sucess.

the problem we have it´s once we activated the "allow clients to establish secure session via StarTLS" under SMTP-> Inbound options. Once we have activate it, we couldnt received emails coming from gmail or any other server using it, because after opening the socket connection mailenable closed it due to

Debug log:

02/05/19 15:29:08 [1140] Successfully started inbound SSL conversation
02/05/19 15:29:08 Couldn't decrypt, error 80090330
02/05/19 15:29:08 ME-I0070: (recv) socket [1140] was gracefully closed during [STARTTLS] command by the remote client 83.169.1.54.
02/05/19 15:29:08 ME-I0074: [1140] (Debug) End of conversation

when we go to activit log

02/05/19 15:28:58 SMTP-IN C9B75F6018FD4CF2BDDC1FDE7809C14F.MAI 1124 83.169.1.54 220 rochena.com ESMTP MailEnable Service, Version: 10.20--10.20 ready at 02/05/19 15:28:58 92 0
02/05/19 15:28:58 SMTP-IN C9B75F6018FD4CF2BDDC1FDE7809C14F.MAI 1124 83.169.1.54 EHLO EHLO plxfiles.aquariumcomputer.com 250-rochena.com [83.169.1.54], this server offers 7 extensions 286 36
02/05/19 15:28:58 SMTP-IN C9B75F6018FD4CF2BDDC1FDE7809C14F.MAI 1124 83.169.1.54 STARTTLS 24 10
02/05/19 15:28:58 SMTP-IN C9B75F6018FD4CF2BDDC1FDE7809C14F.MAI 1124 83.169.1.54 STARTTLS STARTTLS 24 10


We have google about this problem and we have confirmed that our SSL is included correctly under "personal->certifications" at MMC, and our SSL is working fine as it´s recently renew and it´s directly related to the server domain.

Also the SSL is choose under "localost->SSL" properties

for more information SSL is a essential SSL .

could someone have any idea about what to try in order to solved it?

MailEnable-Ian
Site Admin
Posts: 9738
Joined: Mon Mar 22, 2004 4:44 am
Location: Melbourne, Victoria, Australia

Re: error 80090330 starting STARTLS inbound (SSL)

Post by MailEnable-Ian »

Hi,

The most likely reason why Gmail is failing to connect over TLS is because your server is using TLSv1 (I have used openssl to connect to your server and can see TLSv1 is advertised) which is no longer used and most providers will refuse to connect over TLSv1 and SSLv3. Therefore you need to disable TLSv1 and SSLv3 on your server and enable the newer versions TLS.1.1 and TLS 1.2. Here is an article to help further:

https://docs.microsoft.com/en-us/previo ... elTR_TLS12
Regards,

Ian Margarone
MailEnable Support

thatanos
Posts: 4
Joined: Tue Aug 19, 2014 10:57 am

Re: error 80090330 starting STARTLS inbound (SSL)

Post by thatanos »

Thank you Ian, I have also gone into postoffices -> propoerties ->general -> enable post offfices bindings, and I have selected the corret SSL for each domain also, and with this change the decode error dissapeared.

I have also made the changes to switch on the TLS 1.1 and 1.2 at the windows registry, and from now it seems that it´s working fine with the servers that was giving the problems.

thank you again.

Post Reply