Am 02.07.23 um 19:16 schrieb john via Exim-users:
It is true that the server does not offer TLS support and I do not expect itto!The question is why the new machine is different despite running the sameexim binary and identical conf ecxcept for the primary_hostname and how do I fix it?
I'm pretty sure, it's not identically.The Transport used will have a sense of privacy, as we have the year 2023, and not 1980 anymore.
You will find something like this in the transport: hosts_require_tls = * tls_tempfail_tryclear = false Change it to: tls_tempfail_tryclear = trueor better, invest some time in configuring your other devices for tls usage by:
creating a cert for your host and adding: tls_advertise_hosts = * tls_certificate = /etc/pki/tls/certs/exim.pem tls_privatekey = /etc/pki/tls/private/exim.pemto your main section. Cleartext communication is obsolete and default configs around the globe will reflect this, even if it's your own private lan and just technical reports. As you can see, it's simple to setup. The only crux is, that need to recreate the cert from time to time.
best regards, Marius
OpenPGP_0x048770A738345DD3.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
-- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## [email protected] ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
