Bug#948573: exim4: TLS not in use. Log spammed with "No server certificate defined; will use a selfsigned one."

g+debian at cobb.uk.net g+debian at cobb.uk.net
Fri Jan 10 20:06:52 GMT 2020

> You probably have not edited the correct file. "tls_advertise_hosts ="
> does work. Please retry and check with
> /usr/sbin/exim4 -bP tls_advertise_hosts

I edited the correct file. But thanks for pointing out the -bP option: I
have now worked out the problem...

The problem is that the section in /etc/exim4/exim4.conf.template for
manipulating tls_advertise_hosts is actually within a ".ifdef
MAIN_TLS_ENABLE" section. I do not have MAIN_TLS_ENABLE defined
anywhere, so when I edited /etc/exim4/exim4.conf.template to comment out
or change the value for tls_advertise_hosts the changes were being ignored.

If I edit /etc/exim4/exim4.conf.template to put the
'tls_advertise_hosts =' before the '.ifdef MAIN_TLS_ENABLE' then it does

Please consider changing the shipped /etc/exim4/exim4.conf.template to
add 'tls_advertise_hosts =' into the:

# Use upstream defaults

corresponding to the .ifdef MAIN_TLS_ENABLE

More information about the Pkg-exim4-maintainers mailing list