[exim] Re: Fixing or disabling TLS for internal network host…

Top Page
Delete this message
Reply to this message
Author: AC
Date:  
To: exim-users
Subject: [exim] Re: Fixing or disabling TLS for internal network hosts
On 2023-10-07 22:10, Viktor Dukhovni via Exim-users wrote:
> On Sat, Oct 07, 2023 at 09:53:25PM -0700, AC via Exim-users wrote:
>
>> As for misunderstanding the error, perhaps it could be modified to better
>> explain which side is causing the message since I obviously assumed that a
>> message in the server logs indicated the server had a problem absent any
>> other identifying information.
>
> Sadly, the error in question is reported from deep inside the TLS
> library, and Exim would have to work hard to figure out it is reporting
> a "peer" alert, and not some other TLS handshake problem.
>
> So this is just one of those cases where the error only reveals its full
> meaning to those who have some insight into the inner workings of TLS. :-(
>
>      https://www.flickr.com/photos/sluggerotoole/153603564

>


Ok, unfortunate but it is what it is.

As for disabling the TLS or at least disabling the server certificate
check, which parameter is handling that?

I was guessing tls_verify_certificates does that but doesn't seem to
solve the problem. I am not performing authentication this is just Exim
to Exim where the client Exim is sending mail normally to the server Exim.

--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/