Re: [exim] POODLE advisory from exim-announce

Páxina inicial
Borrar esta mensaxe
Responder a esta mensaxe
Autor: elrippo
Data:  
Para: exim exim-users@exim.org
Asunto: Re: [exim] POODLE advisory from exim-announce
Hy Phil,

in my logs i can see, that all clients are using TLS, but if i specify that option, exim4 "stops" taking any messages.
Please find enclosed the output of "exim -d --version"

Kind regards,
elrippo.

--------------------------------------------------------------------------------
Exim version 4.76 #1 built 28-Dec-2012 16:49:07
Copyright (c) University of Cambridge, 1995 - 2007
Berkeley DB: Berkeley DB 5.1.25: (January 28, 2011)
Support for: crypteq iconv() IPv6 PAM Perl Expand_dlfunc GnuTLS move_frozen_messages Content_Scanning DKIM Old_Demime
Lookups (built-in): lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql sqlite
Authenticators: cram_md5 cyrus_sasl dovecot plaintext spa
Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
Compiler: GCC [4.6.3]
Library version: GnuTLS: Compile: 2.12.14
                         Runtime: 2.12.14
Library version: Cyrus SASL: Compile: 2.1.25
                             Runtime: 2.1.25 [Cyrus SASL]
Library version: PCRE: Compile: 8.12
                       Runtime: 8.12 2011-01-15
Library version: MySQL: Compile: 5.5.28 [(Ubuntu)]
                        Runtime: 5.5.40
Library version: SQLite: Compile: 3.7.9
                         Runtime: 3.7.9
WHITELIST_D_MACROS: "OUTGOING"
TRUSTED_CONFIG_LIST: "/etc/exim4/trusted_configs"
Exim version 4.76 uid=0 gid=0 pid=2676 D=fbb95cfd
changed uid/gid: forcing real = effective
  uid=0 gid=0 pid=2676
  auxiliary group list: <none>
seeking password data for user "uucp": cache not available
getpwnam() succeeded uid=10 gid=10
configuration file is /var/lib/exim4/config.autogenerated
log selectors = 00000ffc 00612001
cwd=/home/user 3 args: exim -d --version
trusted user
admin user
changed uid/gid: privilege not needed
  uid=112 gid=121 pid=2676
  auxiliary group list: 45 121 125
seeking password data for user "mail": cache not available
getpwnam() succeeded uid=8 gid=8
user name "root" extracted from gecos field "root"
originator: uid=0 gid=0 login=root name=root
sender address = root@???
Configuration file is /var/lib/exim4/config.autogenerated


-----------------------------------------------------------------------------------------------------------

On Sonntag, 19. Oktober 2014, 03:32:26 Phil Pennock wrote:
> On 2014-10-18 at 10:37 +0200, elrippo wrote:
> > I am running exim on Ubuntu 12.04 LTS
> >
> > If i define "tls_require_ciphers = NORMAL:!VERS-SSL3.0"
> >
> > i get an error in the log and the messages are not handled...
> > "2014-10-18 10:07:55 TLS error on connection from (user) [151.236.xxx.xxx] (gnutls_handshake): No supported cipher suites have been found."
> >
> > Can you advise please?
>
> That client only supports SSL and doesn't support TLS?
>
> Failing that, we need version information to go on with, so please
> provide the output of:
>
>     exim -d --version

>
> Regards,
> -Phil
>
>