On 2015-11-03, Viktor Dukhovni <exim-users@???> wrote: > On Tue, Nov 03, 2015 at 01:51:11PM +0000, Jeremy Harris wrote: >> maintainers)? Should we be encouraging them by making
>> this change and then refusing to run (with some appropriate
>> error message) if tls_certificate is not set?
>
> I would try to enable by default, but refusing to run is I think
> too drastic. Log a warning if TLS is configured but not available,
> perhaps for lack of certificates, and run without TLS.
log a warning to paniclog - that will get admin attention.
debian checks it every day and mails it to root, there are already
other non-fatal errors logged there.