On Wed, Feb 12, 2003 at 07:45:25AM -0600, Craig Jackson wrote:
> This is an exim question but I post it to this group because it is
> installed from a testing Debian package on Sarge. It starts with the
> script in /etc/init.d. I had exim installed then decided I wanted
> exim-tls and installed that. Please can anyone tell me how to start exim
> with tls support. When I try to connect with telnet, I get this error:
>
> <rhino IP-TRACKING 0>$ telnet myip 465
> Trying myip ...
> telnet: Unable to connect to remote host: Connection refused
What does 'netstat -pat' say? I have exim-tls running on both my woody
mailserver and my sid workstation, and it works great. They're both
listening on TCP port 25 though.
> mail:/etc/exim# exim -bV
> Exim version 3.35 #1 built 15-Apr-2002 20:48:24
> Copyright (c) University of Cambridge 2001
>
> The auth/tls entries in exim.conf:
>
> host_auth_accept_relay = *
>
> auth_hosts = MUSTAUTH
>
> # SSL/TLS cert and key
> tls_certificate = /etc/exim/mail.cert
> tls_privatekey = /etc/exim/mail.cert
You did create them, right?
> # Advertise TLS to anyone
> tls_advertise_hosts = *
>
> # Require auth over SSL only.
> auth_over_tls_hosts = *
>
> fixed_plain:
> driver = plaintext
> public_name = PLAIN
> server_condition = ${if and
> {{eq{$2}{'uname'}}{eq{$3}{'pass'}}}{yes}{no}}
> server_set_id = $2
Looks good; I just uncomment the
tls_{certificate,privatekey,advertise_hosts} lines,personally, generated
the keys and it Just Worked. What do the logs say? exim is quite
verbose...
--
Rob Weir <rweir@ertius.org> http://ertius.org/
Attachment:
pgpfapr8K_FAu.pgp
Description: PGP signature