On 9 Oct 2005 at 23:58, OpenMacNews wrote about
"Re: [exim] debugging 550 rejects 'a":
|...
| g'mornin fred,
Morning already? Geez, I gotta get to bed! ;)
|...
| > It sure doesn't *look* TLS related.
More accurately, it doesn't look like there's a problem with the TLS.
|...
| > Did you compare this log to one
| > captured for a successfull session with TLS disabled?
|
| here's the comparison ...
|...
OK, seems clear enough. When you have an encrypted session, you must
be taking a different (and wrong) path through your DATA (or MIME)
ACL.
Also of interest, you don't advertise SMTP AUTH in an unencrypted
session, even though you support CRAM-MD5. So the non-TLS session
isn't authenticated either.
Check your MIME (if you have one) and DATA ACL's for conditions
referencing $tls_cipher, $authenticated_id, and/or
$sender_host_authenticated.
- Fred
