Florian Weimer wrote: > * Florian Weimer: >> It's the generation of the special server-side key used to support >> "RSA export" clients which use 40-bit symmetric session keys.
> Turns out the patch was broken. This one should be better. The > comments above still apply. Will this patch be included in the next point release of Sarge or better yet released via a security update, since it is trivial to DoS Exim4 from Sarge with some single SSL/TLS connections? Grüße, Sven. -- Sven Hartge -- professioneller Unix-Geek Meine Gedanken im Netz: http://www.svenhartge.de/ Achtung, neue Mail-Adresse: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]