Bug#949482: exim4-config: Please drop the pointless warning "Warning: No server certificate defined; will use a selfsigned one."

Francesco Poli invernomuto at paranoici.org
Tue Apr 28 18:22:34 BST 2020

On Tue, 21 Jan 2020 13:55:20 +0100 Vincent Lefevre <vincent at vinc17.net>
wrote: [...]
> Each time I upgrade exim4, I get:
> Setting up exim4-config (4.93-9) ...
> 2020-01-21 13:27:26 Warning: No server certificate defined; will use a selfsigned one.
>  Suggested action: either install a certificate or change tls_advertise_hosts option

It is also written to /var/log/exim4/mainlog at *each* queue run (thus
twice per hour).

> I suppose that this is pointless, thus this warning should be dropped.
> Users do not be spammed by useless messages.

I am also under the impression that this warning should be muted, at
least when

  $ grep interfaces /etc/exim4/update-exim4.conf.conf 
  dc_local_interfaces=' ; ::1'

The rationale is: if my exim only listens to the loopback interface,
then I don't need a server certificate, since my exim won't accept
connections from remote clients.
Does this make sense?

 There's not a second to spare! To the laboratory!
..................................................... Francesco Poli .
 GnuPG key fpr == CA01 1147 9CD2 EFDF FB82  3925 3E1C 27E1 1F69 BFFE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-exim4-maintainers/attachments/20200428/564d1a4e/attachment.sig>

More information about the Pkg-exim4-maintainers mailing list