[Exim] TLS problems with M$ Exchange 2k

Página Principal
Apagar esta mensagem
Responder a esta mensagem
Autor: John P Connor
Data:  
Para: exim-users
Assunto: [Exim] TLS problems with M$ Exchange 2k
Hi Guys

I've been forced to talk securely to an Exchange box, using some dummy
domains the Exchange admin set up atm. I can send to it fine from my
exim-running linux box but when I try the other way round I get a 501 error:

1, erniePDC, -, 60, 0, 4, 0, 0, EHLO, -, erniepdc.ernie.mshome,
oldfield, OutboundConnectionResponse, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 60, 0, 39, 0, 0, -, -, 250-oldfield+Hello+exc+[10.10.10.1],
oldfield, OutboundConnectionCommand, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 60, 0, 8, 0, 0, STARTTLS, -, -,
oldfield, OutboundConnectionResponse, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 70, 0, 16, 0, 0, -, -, 220+TLS+go+ahead,
oldfield, OutboundConnectionCommand, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 140, 0, 4, 0, 0, MAIL, -,
FROM:<Administrator@???>+SIZE=593,
oldfield, OutboundConnectionResponse, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 140, 0, 119, 0, 0, -, -,
501+<Administrator@???>+SIZE=593:+malformed+address:+SIZE=593+may+n
ot+follow+<Administrator@???>+,
oldfield, OutboundConnectionCommand, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 451, 0, 4, 0, 0, QUIT, -, -,
oldfield, OutboundConnectionResponse, 2/10/2003, 17:55:01, SMTPSVC1,
erniePDC, -, 451, 0, 31, 0, 0, -, -, 221+oldfield+closing+connection,

This is stupid IIS log format, which gives the most detail. I think the "+"s
stand for " ". Leastways, a successful non-TLS attempt looks similar:

<snip>
oldfield, OutboundConnectionCommand, 2/10/2003, 17:56:29, SMTPSVC1,
erniePDC, -, 20, 0, 4, 0, 0, MAIL, -,
FROM:<Administrator@???>+SIZE=580,
oldfield, OutboundConnectionResponse, 2/10/2003, 17:56:29, SMTPSVC1,
erniePDC, -, 20, 0, 6, 0, 0, -, -, 250+OK,
<snip>

So looks like the problem is when Exchange says:

MAIL FROM::<Administrator@???> SIZE=593

which is, afaik, syntactically valid under normal conditions. Anyone got any
ideas?


Cheers

John