Package: debian-edu-config Version: 1.926 1.818+deb8u2 Severity: seious Hi, while testing if Thunderbird works like expected in Debian Edu Stretch, I noticed that the provided exim4 server configuration (/etc/exim4/exim-ldap-server-v4.conf) is leading to a broken SMTP server: sending mail is possible w/o authentication, TLS is missing. Only possible SMTP settings are: (1) No connection security (2) No authentification These issues are caused by exim4 security fix for CVE-2016-1531 and commit 4beb721 (master branch, fix for #794602). Jessie is affected as well (both issues, same fixes needed). Wolfgang
Attachment:
signature.asc
Description: PGP signature