Renaud Allard wrote: > Hello,
>
> I am having some problems with the STARTTLS feature in exim on one server.
> Basically, when a mail is sent, encrypting it always fails and only
> after quite a while (but there is not much entropy on this system).
>
> I manage tens of other exim servers with the exact same version and OS.
> I even removed exim and gnutls and reinstalled them just in case a
> package was corrupted. 88.198.37.140 (which also runs exim) is know to
> work in TLS with all the other servers, so the problem is not there.
Are you running Debian? If so, and if this is in fact an entropy
starvation problem, then installing gnutls-bin might help. On debian,
iif gnutls-bin is installed, it changes the way it regenerates the
encryption params to do a way that does not cause Exim to block.