Re: [Exim] TLS/AUTH interaction

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MTim Hurman at <-
 
Delete this message
Reply to this message
Author: David Woodhouse
Date:  
To: Tim Hurman
CC: exim-users
Subject: Re: [Exim] TLS/AUTH interaction
kano-exim@??? said:
> When setting auth_over_tls_hosts to *, I find that the AUTH line is
> removed from the EHLO respose, is this meant to happen? because as
> mozilla does not see the auth line and never bothers to authenticate
> it'self.

When you use TLS, there are _two_ EHLO exchanges. If AUTH is not permitted
without TLS, then AUTH should not be advertised when you first connect.
After starting TLS, the client is required to forget the
originally-advertised set of extensions and should send another EHLO. The
response to _that_ EHLO should include AUTH.

--
dwmw2




This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[Exim] TLS/AUTH interactionRe: [Exim] RBL trouble->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)