STARTTLS: read error=generic SSL error (0)

Ok, so I had a customer with a newer version of sendmail with tons of these error messages in the logs:

STARTTLS: read error=generic SSL error (0)

After doing some research, everyone was recommending turning off of the error reporting by recompiling sendmail with a different configuration. The real problem though is that usually the error is being written by just one errant sendmail process and it just needs to be killed. It’s actually good to get the error message so you know there is something to fix. A normal sendmail restart does not kill the errant process, so look at the message in the logs and kill that particular PID. So for example, the following log entry:

sendmail[21313]: STARTTLS: read error=generic SSL error (0)

You would use the following command:

kill -9 21313


Leave a comment

Your email address will not be published. Required fields are marked *