Bug#283573: exim4: Server-side AUTH: require TLS
Andreas Metzler
Andreas Metzler <ametzler@downhill.at.eu.org>, 283573@bugs.debian.org
Tue, 30 Nov 2004 21:54:35 +0100
On 2004-11-30 Olaf van der Spek <OvdSpek@LIACS.NL> wrote:
> Andreas Metzler wrote:
> >On 2004-11-30 Olaf van der Spek <OvdSpek@LIACS.NL> wrote:
>>> Marc Haber wrote:
>>>> On Sun, Nov 28, 2004 at 11:28:29AM +0100, Olaf van der Spek wrote:
>>>> Configuring the server-side entries is not so easy since you need a
>>>> certificate for that.
>>> True, but TLS is quite easy to setup.
>> If you are not going for a self-signed certificate it is not, and
>> afaik for a SMTP server self-signed is not good enough as there are
>> picky clients.
> I think secure AUTH with a self-signed certificate by default is still
> better than no AUTH at all by default.
You are assuming that "picky clients" will simply fall back to non-TLS
if they do not like the self-signed certificate.
cu andreas
--
"See, I told you they'd listen to Reason," [SPOILER] Svfurlr fnlf,
fuhggvat qbja gur juveyvat tha.
Neal Stephenson in "Snow Crash"