SSL/TLS for port 465 (Net::ReadTimeout) - undocumented solution

niccokunzmann · July 5, 2023, 11:20am

I was trying to setup email with a cpanel server. I failed for several hours.
This did the trick in app.yml:

DISCOURSE_SMTP_FORCE_TLS: true

As a new admin, I wonder about this setting:

DISCOURSE_SMTP_ENABLE_START_TLS: true

What is the difference? Why does one work and the other does not? And if that is so: Why would the DISCOURSE_SMTP_FORCE_TLS not be there, too?

It looks like Thunderbird (E-Mail client) shows these three options: no encryption, STARTTLS and SSL/TLS. So, I wondered if DISCOURSE_SMTP_FORCE_TLS implies SSL/TLS, if that could be in the template. Or maybe not?

How is it with documenting these options? Would that be alright? Is there a policy of “keeping templates small”?
E.g. I was a bit confused by DISCOURSE_SMTP_ADDRESS and DISCOURSE_SMTP_DOMAIN as e.g. the curl to send emails does not need DISCOURSE_SMTP_DOMAIN as a parameter.

RGJ · July 5, 2023, 11:30am

There are two ways of doing SSL with SMTP.

Connect normally, usually over port 25 or 587, and issue a STARTTLS command. This is what DISCOURSE_SMTP_ENABLE_START_TLS is for.
Connect with SSL from the start, usually over port 465. This is what DISCOURSE_SMTP_FORCE_TLS is for.

Topic		Replies	Views
SMTP email issue Net::Timeout Installation	2	1403	February 18, 2021
Sending email failed with SMTPS port 465 Installation	14	4243	December 4, 2022
Cannot send email - problem with port 465 Installation email	10	3772	November 20, 2022
Yet other SMTP 587 port email various errors Installation email	2	692	August 19, 2024
Can't send email with certificate issue Installation	2	1507	April 2, 2019

SSL/TLS for port 465 (Net::ReadTimeout) - undocumented solution

Related topics