Bug#285371: Re: exim4-daemon-heavy: gnutls-params not being re-created and hangs STARTTLS connections
Marc Haber
Marc Haber <mh+debian-packages@zugschlus.de>, 285371@bugs.debian.org
Sun, 8 May 2005 22:11:11 +0200
Hi,
On Sat, Feb 26, 2005 at 11:42:20PM +0100, Marc Haber wrote:
> A possible fix would be generating new parameters in a separate
> process, replacing the old ones with the new ones after successful
> generation. This will probably suck up all entropy available for an
> extended period of time, but to close this bug we need to deliver a
> possibility for doing so.
This will be much easier with exim 4.51, since exim 4.51 now writes
the dh_parameters in PEM format which allows the parameter file to be
re-generated asynchronously with certtool.
So, a local fix for the issue in 4.50 will be useless after 4.51 has
been accepted into Debian.
However, it looks like sarge is really frozen this time, and 4.51
won't be allowed into sarge.
So it looks like this bug will remain open for sarge, to be fixed in
etch.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835