If Outlook does indeed not support TLS, you should still be able to point it at your SMTPS port and just SSL. Is Exim doing the SSL (not an Exim-guru myself), or are you using something like stunnel?
-- Dustin Puryear President and Sr. Consultant Puryear Information Technology, LLC 225-706-8414 x112 http://www.puryear-it.com Author, "Best Practices for Managing Linux and UNIX Servers" http://www.puryear-it.com/pubs/linux-unix-best-practices/ ________________________________ From: [email protected] [mailto:[email protected]] On Behalf Of James Kuhns Sent: Wednesday, June 03, 2009 5:07 PM To: [email protected] Subject: [brlug-general] Exim4 + SquirrelMail Since SquirrelMail doesn't yet support STARTTLS outside of experimental , does anyone know how to get Exim4 on Debian Lenny setup so that: 1) remote clients (such as Outlook) have to connect using AUTH LOGIN through a TLS connection to send 2) SquirrelMail on the same box as Exim4 can send with an AUTH LOGIN in clear text I can get one or the other working. I set MAIN_TLS_ADVERTISE_HOSTS = ! <machine ip here>, to get #1 to work I set server_advertise_condition = ${if eq($tls_cipher}{}{}{*}}, to get #2 to work just set server_advertise_condition = 1 (I know this is not correct, I just wanted to test that SquirrelMail was working with AUTH LOGIN in clear text.) In case #1, I get the PIPLINING and STARTTLS advertisements after the EHLO from remote clients (which work correctly), SquirrelMail from localhost only gets the PIPELINING advertisement and cannot auth. I need to get an AUTH LOGIN for localhost. In case #2 I get PIPELINING and AUTH LOGIN after EHLO for both remote and local clients. This lets SquirrelMail connect, but it also lets remote clients in using clear text (since I'm not limiting it to localhost). I'm guessing what I need is the server_advertise_condition = ${if eq($tls_cipher}{}{}{*}} or if connected from localhost, I just can't figure out how to write the " or if connected from localhost" part. Any help would be appreciated. James
_______________________________________________ General mailing list [email protected] http://mail.brlug.net/mailman/listinfo/general_brlug.net
