Bug#517394: exim4-daemon-heavy: Incoming connection fails with "(gnutls_handshake): A TLS fatal alert has been received."
Rasmus Bøg Hansen
rasmus at msconsult.dk
Wed Mar 4 08:49:15 UTC 2009
Andreas Metzler skrev:
> On 2009-03-02 Rasmus Bøg Hansen <rasmus at msconsult.dk> wrote:
>
>> Andreas Metzler skrev:
>>
> [...]
>
>>> Could you doublecheck whether disabling certificate verification works
>>> as a workaround?
>>> MAIN_TLS_VERIFY_CERTIFICATES = /dev/null
>>>
>
>
>> This does indeed fix the problem!
>>
>
> Looks like we found another instance of #482420 or #515999.
>
You're, of course welcome to merge bugs if applicable (I am unsure what
bugs to actually merge).
Can I help more by debugging etc.?
I just noted in the logs, that I got this:
2009-02-27 12:56:12 TLS error on connection from
albani.amagerkollegiet.dk [93.160.59.42] (gnutls_handshake): A TLS
packet with unexpected length was received.
2009-02-27 12:56:17 1Ld1KC-0003HZ-VH <= moffe at zz9.dk
H=albani.amagerkollegiet.dk [93.160.59.42] P=esmtp S=7686
id=49A7D4B0.2060307 at zz9.dk
That was also fixed by disabling certificate verification. The sending
server here is running Debian Etch (Exim 4.63-17).
2009-03-03 08:09:21 1LeOki-00031c-J4 <= moffe at zz9.dk
H=albani.amagerkollegiet.dk [93.160.59.42] P=esmtps
X=TLS1.0:RSA_AES_256_CBC_SHA1:32 DN="" S=1491
id=87wsb7ulqp.fsf at smaug.amagerkollegiet.dk
Regards and thanks
/Rasmus
--
Rasmus Bøg Hansen
MSC Aps
Bøgesvinget 8
2740 Skovlunde
44 53 93 66
More information about the Pkg-exim4-maintainers
mailing list