Re: [exim] Exim TLS - problem

Top Page
Delete this message
Reply to this message
Author: Jakob Hirsch
Date:  
To: exim-users
Subject: Re: [exim] Exim TLS - problem
Dave Lugo, 2010-07-03 16:09:

> This is my complete acl for auth, nothing
> else needed in it:
>
> acl_check_auth:
>
>    #
>    # The following rules force auth to require STARTTLS.
>    #
>    accept  encrypted = *
>    deny    message   = TLS encryption required


I would strongly recommend against this. This does not stop Exim from
announcing that AUTH PLAIN is supported, so clients would send AUTH
PLAIN together with their login information, e.g. "AUTH PLAIN
AGZvbwBiYXI=", so it's too late to reject it.