On 24/11/15 23:08, Brian Spraker wrote:
> Adding in the ability to accept TLS for authentication of clients to the Exim mail server - and for the Exim mail server to use TLS between other servers.
> Part 1 is done - allowing Exim to use TLS between servers.
> Part 2 is more difficult. I have setup a specific port to require TLS, but I am not able to allow TLS and non-TLS on the other ports. It seems to either be required that it is on or off.
> With migrating over to TLS, the non-TLS access needs to remain until all users are changed over.
> Is there any directives that can be set to do this?
It depends if you're wanting TLS-on-connect, or STARTTLS. The latter
is negotiated as part of an ESMTP startup, so it's optional on a
port. The former, no.
Read:
http://exim.org/exim-html-current/doc/html/spec_html/ch-encrypted_smtp_connections_using_tlsssl.html
--
Cheers,
Jeremy