Re: [exim] Allow STARTTLS after HELO

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Heiko Schlittermann
Date:  
À: exim-users
Sujet: Re: [exim] Allow STARTTLS after HELO
David Angleitner <David.Angleitner@???> (Do 27 Jan 2011 09:02:10 CET):
> Hi
>
> We have set up exim to allow encrypted connections.
> This works fine if the client uses EHLO.
> But if the client uses HELO and then sends STARTTLS,
> exim responds with "STARTTLS command used when not advertised".
>
> Is there a way to allow STARTTLS even if the peer host
> used HELO instead of EHLO?
>
> I'm not sure if EHLO is mandatory according to the RFC,
> but apparently other MTAs have no issue with this.


… maybe unrelated, but finally fixed *in OpenSSL*, not in Exim:
The s_client sub command of OpenSSL issued STARTTLS without waiting for
the server greeting/offer and thus failed to talk with Exim. It worked at
least with some other major MTA - but this does not imply that Exim is
wrong.

As suggested in the other answer: try to fix the client, try to fix the
client or think about Exim as Open Source…

--
Heiko :: dresden : linux : SCHLITTERMANN.de
GPG Key 48D0359B : 3061 CFBF 2D88 F034 E8D2 7E92 EE4E AC98 48D0 359B