[exim] Exim hostlist in the exim config - related to CVE-201…

Top Page
Delete this message
Reply to this message
Author: Michael Love
Date:  
To: Exim-users@exim.org
Subject: [exim] Exim hostlist in the exim config - related to CVE-2019-15846
Hi All,
Question:
We have a restricted hostlist of only other servers able to email exim 4.86.
For this new vulnerability, is the TLS handshake executed before the whitelist hostlist lookup, or is the whitelist hostlist queried first?
Thank you.Michael Love.