Bug#422419: exim4: tls_verify_hosts only applies during TLS sessions
Oskar Liljeblad
oskar at osk.mine.nu
Sat May 5 19:26:53 UTC 2007
Package: exim4
Version: 4.63-17
Severity: minor
It should be clarified in the documentation that tls_verify_hosts only
applies to TLS sessions. That is, if a sending host matched in
tls_verify_hosts does not attempt to use TLS, it can still send messages
unencrypted.
This makes tls_verify_hosts pretty useless, but that's just my humble
opinion...
Regards,
Oskar Liljeblad (oskar at osk.mine.nu)
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.21.1
Locale: LANG=C, LC_CTYPE=en_GB.ISO-8859-1 (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/bash
Versions of packages exim4 depends on:
ii debconf [debconf-2.0] 1.5.13 Debian configuration management sy
ii exim4-base 4.67-1 support files for all exim MTA (v4
ii exim4-daemon-heavy 4.67-1 exim MTA (v4) daemon with extended
exim4 recommends no packages.
-- debconf information excluded
More information about the Pkg-exim4-maintainers
mailing list