Re: [exim] TLS "certificate expired" warnings on inbound con…

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Heiko Schlittermann
Datum:  
To: exim-users
Betreff: Re: [exim] TLS "certificate expired" warnings on inbound connections
Hi Tim,

Tim Jackson via Exim-users <exim-users@???> (Di 31 Mai 2022 20:33:19 CEST):
>
> TLS error on connection from r209.notifications.natwest.com
> [130.248.154.209]:44104 I=[167.235.252.255]:25 (SSL_accept):
> error:14094415:SSL routines:ssl3_read_bytes:sslv3 alert certificate expired


Is there any chance that the client tries to present you a certificate,
even if you do not request it?

I'm a bit suprised that Exim drops the connection (doesn't it?) seeing
the expired certificate, but this isn't very unlikely. I'd you a packet
capture to check the certificates from both sides.

    Best regards from Dresden/Germany
    Viele Grüße aus Dresden
    Heiko Schlittermann
--
 SCHLITTERMANN.de ---------------------------- internet & unix support -
 Heiko Schlittermann, Dipl.-Ing. (TU) - {fon,fax}: +49.351.802998{1,3} -
 gnupg encrypted messages are welcome --------------- key ID: F69376CE -