Bug#283573: exim4: Server-side AUTH: require TLS
Marc Haber
Marc Haber <mh+debian-packages@zugschlus.de>, 283573@bugs.debian.org
Tue, 30 Nov 2004 08:04:12 +0100
On Sun, Nov 28, 2004 at 11:28:29AM +0100, Olaf van der Spek wrote:
> > # Because AUTH LOGIN sends the password in clear, per default we only allow it
> > # over encrypted connections. If you want to change this disable the existing
>
> Could you do the same for the server-side entries?
Configuring the server-side entries is not so easy since you need a
certificate for that.
One server-side TLS is configured, just configure
auth_advertise_hosts = ${if eq{$tls_cipher}{}{}{*}}
to have AUTH only advertised and accepted on encrypted connections.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835