On Tue, 31 Oct 2006, Tim Wilde wrote:
> From: Tim Wilde <tim@???>
> To: Hill Ruyter <hill@???>
> Cc: exim-users@???
> Date: Tue, 31 Oct 2006 09:11:28 -0800
> Subject: Re: [exim] SSL Anomoly? or config error?
...
> Is the remote client also using Outlook Express, or a different MUA?
> Outlook Express (at least in prior versions) can only do SSL via an
> SMTPS port, the default being 465. To get Exim to listen on 465 for
> SMTPS in addition to the normal port 25 you would need configuration
> lines like:
>
> daemon_smtp_ports = 25 : 465
> tls_on_connect_ports = 465
>
> Local vs. non-local shouldn't make any difference here, so I'm
> guessing that the remote client wasn't OE, but something more
> "sane" that can understand the more modern STARTTLS method of
> doing secured SMTP.
Note that SMTPS is deemed obsolete[1]. Ideally authenticated mail
clients (not MTAs) will be using encrypted connections to Message
Submission (RFC 2476) on port 587[2]. So it's better to set up a
service with:
daemon_smtp_ports = 25 : 465 : 587
tls_on_connect_ports = 465
if you want to cover all possibilities.
[1] But, sigh, I see plenty of SMTPS connections here. So I have
to offer this service.
[2] Which is what this message uses to start its journey.
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
D.H.Davis@??? Phone: +44 1225 386101
