> On Jun 7, 2019, at 1:37 PM, Viktor Dukhovni via Exim-users <exim-users@???> wrote:
>
> Actually, that did not work, I must have botched the command-line
> arguments. The "STARTTLS" never happened, as can be seen from the
> fact that the EHLO response still contains 'STARTTLS', which would
> not be the case once starttls is established. Sorry, I am Postfix
> and OpenSSL developer, not Exim or GnuTLS. Perhaps someone else
> will post the correct options, or you can double-check the manpage.
See
http://www.moeding.net/2010/01/testing-smtp-auth-after-starttls/
Apparently, with those command-line options, you need to type the
STARTTLS yourself, wait for the server 2XX ACK, and then type "Ctrl-D"
(TTY EOF sequence), telling gnutls-cli to take over and perform the
handshake. There are likely better ways of doing this...
--
Viktor.
