I am using exim 4.2 on Debian, and have configured it to use TLS and a
self-signed certificate. This works fine with my mail clients, which
have downloaded and installed that cert. But now I am wondering:
If I have set tls_advertise_hosts = *, then ALL clients who send an
SMTP message will try to use TLS if they can. Now what will happen if
another MTA will deliver a mail to my system, and not a mail client?
Would it try to use TLS as well, and fail to do so because it can't
verify my certificate? Will it do the transmission without TLS then or
will it refuse the connection at all (and leave me without mails)?
If the latter is the case, how do I configure exim so that it uses TLS
only with MUAs?