Bug#386875: exim4: doesn't support outgoing SSL connections on port 465
On Mon, Sep 11, 2006 at 06:27:34PM +0930, Arthur Marsh wrote: Marc Haber wrote, On 2006-09-11 18:14: On Mon, Sep 11, 2006 at 04:56:14AM +0930, Arthur Marsh wrote: I've used a guide at http://www.technovelty.org/linux/tips/exim4ssmtp.html to get outbound ssl connections to my ISP's secure mail server working, and wondered by exim4 didn't support outbound mail connections over ssl using port 465? smtp-over-tls on port 465 is a legacy protocol. Upstream is not planning to implement this at the current time. Please pester your ISP to support current Internet Standards. All I can offer is to forward this upstream, getting a new statement we won't implement this and keep this bug open as wontfix in the Debian BTS. I don't think that makes sense, so I'll close this bug. If you disagree, please feel free to re-open. OK, but what are the current Internet standards for secure smtp connections? ESMTP STARTTLS on Port 25. My ISP's current secure email connection information is at: http://www.internode.on.net/support/email/secure/index.php They seem to provide you sub-standard service. Try educating them. I suspect that there is a number of mail clients that cannot do smtp-over-tls on tcp/465 in the first place. (FYI, I'm one of the people that doesn't believe the telnet is insecure, ssh is safe mantra that others keep stating, having run secure-only telnet servers and read of man-in-the-middle attacks on ssh). When people say telnet is insecure, they are usually referring to unencrypted telnet. Personally, I have never run telnet over TSL, but I suspect that ssh is more widely used because of its vastly superior feature set. mitm attacks are usually caused by people clicking away the new host key warning, but it's the same with classical TLS as well. Greetings Marc -- - Marc Haber | I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things.Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#386875: exim4: doesn't support outgoing SSL connections on port 465
Package: exim4 Version: 4.63-3 Severity: wishlist I've used a guide at http://www.technovelty.org/linux/tips/exim4ssmtp.html to get outbound ssl connections to my ISP's secure mail server working, and wondered by exim4 didn't support outbound mail connections over ssl using port 465? Regards, Arthur. -- Package-specific info: Exim version 4.63 #1 built 23-Aug-2006 17:21:47 Copyright (c) University of Cambridge 2006 Berkeley DB: Sleepycat Software: Berkeley DB 4.3.29: (September 6, 2005) Support for: crypteq iconv() IPv6 GnuTLS move_frozen_messages Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dsearch nis nis0 passwd Authenticators: cram_md5 plaintext Routers: accept dnslookup ipliteral manualroute queryprogram redirect Transports: appendfile/maildir/mailstore autoreply lmtp pipe smtp Fixed never_users: 0 Size of off_t: 8 Configuration file is /var/lib/exim4/config.autogenerated # /etc/exim4/update-exim4.conf.conf # # Edit this file and /etc/mailname by hand and execute update-exim4.conf # yourself or use 'dpkg-reconfigure exim4-config' dc_eximconfig_configtype='smarthost' dc_other_hostnames='victoria' dc_local_interfaces='127.0.0.1' dc_readhost='victoria' dc_relay_domains='' dc_minimaldns='false' dc_relay_nets='' #dc_smarthost='mail.internode.on.net' #dc_smarthost='mail.bigpond.com' #dc_smarthost='securemail.internode.on.net' dc_smarthost='localhost' CFILEMODE='644' dc_use_split_config='false' dc_hide_mailname='true' dc_mailname_in_oh='true' mailname:victoria -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17 Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) Versions of packages exim4 depends on: ii exim4-base4.63-3 support files for all exim MTA (v4 ii exim4-daemon-light4.63-3 lightweight exim MTA (v4) daemon exim4 recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]