Bug#822174: exim4: Please add hosts_require_tls = REMOTE_SMTP_SMARTHOST_HOSTS_REQUIRE_TLS
Andreas Metzler
ametzler at bebt.de
Sat Apr 23 16:01:00 UTC 2016
On 2016-04-23 Marc Haber <mh+debian-packages at zugschlus.de> wrote:
> On Fri, Apr 22, 2016 at 01:31:33PM +0200, Samuel Thibault wrote:
> > Marc Haber, on Fri 22 Apr 2016 12:53:59 +0200, wrote:
[...]
> > > Ouch. The smarthost sohuldn't advertise AUTH capabilities before
> > > STARTTLS if it doesn't want to authenticate in clear text.
> >
> > Well, no, it doesn't:
> >
> > brl$ telnet smtp.ens-lyon.org 587
[no AUTH listed]
> > 250 DSN
> > auth
> > 530 5.7.0 Must issue a STARTTLS command first
> Ah. Exim shouldnt try authenticating then. But the Postfix there gives
> the same answer to a MAIL FROM, which is probably the case here.
[...]
Since this took me some time to parse, a clarification for the archives:
Exim does not try AUTH if it was not advertised. (See
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=822174#20 - exim
simply tried sending unauthenticated.)
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the Pkg-exim4-maintainers
mailing list