Bug#482012: exim4: TLS incoming connections problems

Simon Josefsson simon at josefsson.org
Mon Oct 13 20:01:53 UTC 2008

I was looking at this bug report.  Could it be that the problem here is
the 16kb handshake DoS limit?  It looks like the handshake is really big
when ca-certificates was installed, and I think the 'Error in the push
function.' error message is consistent with that problem as well (in
older gnutls versions, newer versions has a better error code).

Newer versions of gnutls should have a higher DoS limit that fixes this.

So it may actually not be a OE problem, but a gnutls problem that has
been fixed.

I can't find anywhere the information about which gnutls version was
used though.  So please try latest gnutls/exim versions and check
whether you really need to disable client cert requests for OE to work.


More information about the Pkg-exim4-maintainers mailing list