Re: [exim] Can't read SSL key/cert, how to debug?

Top Page
Delete this message
Reply to this message
Author: Yves Goergen
Date:  
To: exim
Subject: Re: [exim] Can't read SSL key/cert, how to debug?
Am 20.12.2014 um 19:40 schrieb Yves Goergen:
> During my tests today, I noticed that Exim doesn't support SSL SMTP
> connections anymore. It used to work at some point, but now it doesn't.


I just started exim again and don't understand what's happening here. An
SMTP connection with implicit SSL on port 465 worked again now. STARTTLS
on port 25 still fails with the same messages. I haven't changed
anything. I didn't even restart Thunderbird or the client or server OS.

According to the exim main log, it was a TLS 1.1 connection. Does that
say anything?

<= ... P=esmtpsa X=TLS1.1:DHE_RSA_AES_128_CBC_SHA1:128
>= ... X=TLS1.0:DHE_RSA_AES_128_CBC_SHA1:128


(The recipient server is older and may only support TLS 1.0.)

I'm a bit surprised to see "AES_128" and "SHA1" here, but that's
probably a different topic.

--
Yves Goergen
http://unclassified.de
http://dev.unclassified.de