Re: exim4 as a smarthost with TLS
Reco, Sven, thank you for your help, my next steps below :
Le 31/07/2021 à 16:24, Reco a écrit :
On Sat, Jul 31, 2021 at 04:03:43PM +0200, Sven Hartge wrote:
Reco <recoverym4n@enotuniq.net> wrote:
On Sat, Jul 31, 2021 at 02:45:34PM +0200, Sven Hartge wrote:
Reco <recoverym4n@enotuniq.net> wrote:
Seems straightforward enough.
Edit /etc/exim4/exim4.conf.template, you'll need to comment out a block
similar to this:
.ifndef REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS
REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS = *
.endif
Do not touch second block (starting with .ifdef
REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS).
Execute /usr/sbin/update-exim4.conf.
Bounce exim4.
Smarthost certificate verification should be disabled after this.
Wouldn't it be easier to just create /etc/exim4/exim4.conf.localmacros
and put
REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS = !*
in it?
Could be. Will exim4.conf.localmacros apply to non-split exim config?
It will *only* apply to a non-split config.
Agreed. There's nothing wrong in trying
REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS = !* as far as I'm concerned.
What I just did :
# nano /etc/exim4/exim4.conf.template
I commented out this :
#.ifndef REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS
# REMOTE_SMTP_SMARTHOST_TLS_VERIFY_HOSTS = *
#.endif
Then
# update-exim4.conf
# systemctl restart exim4.service
# rm /var/spool/exim4/db/retry*
# rm /var/spool/exim4/db/wait-remote_smtp_smarthost*
# tail -f /var/log/exim4/mainlog
Then in a user terminal :
$ mail -s test my.name@provider.fr
The log :
2021-08-01 00:33:34 1m9xXy-00035e-PB <= my.name@provider.fr U=rudu
P=local S=463
2021-08-01 00:33:35 1m9xXy-00035e-PB H=smtpauth.provider.fr
[185.204.xxx.xxx]: SMTP error from remote mail server after AUTH PLAIN
********************************************************: 454 4.7.0
Temporary authentication failure: Connection lost to authentication server
2021-08-01 00:33:35 1m9xXy-00035e-PB == my.name@provider.fr R=smarthost
T=remote_smtp_smarthost defer (0) H=smtpauth.provider.fr
[185.204.xxx.xxx]: SMTP error from remote mail server after AUTH PLAIN
********************************************************: 454 4.7.0
Temporary authentication failure: Connection lost to authentication server
Sorry to be so lost, but really I can't figure out what all this means ...
But that's sort of new kind of mainlog from exim4 ...
Rings some bell ?
Thanks in advance
Rudu
Reply to: