[Pkg-exim4-users] Exim4 with Exchange and TLS doesn't work
Jan Kesten
jan.kesten at dafuer.de
Thu Apr 13 06:46:44 UTC 2006
Hi all :-)
I hope this list is more appropriate than the normal user lists (if not
give me a hint) for exim related problems.
I setup a server running Debian stable with latest updates as smarthost
for a lan and I use SMTP AUTH for relay control and TLS for encryption.
Both work fine using another exim or for example Thunderbird as second
peer (connecting and AUTH itself).
But I have one M$ Exchange wich needs to talk to my exim server. Using
plaintext logins everything works, but I don't really like this - and
CRAM-MD5 isn't supported by Exchange AFAIK. So I enabled TLS, but this
doesn't work and in mainlog lines like the following two appear:
2006-04-12 12:54:38 TLS recv error on connection from
p54850177.dip0.t-ipconnect.de [84.133.1.119]: A TLS packet with
unexpected length was received.
2006-04-12 12:54:38 TLS send error on connection from
p54850177.dip0.t-ipconnect.de [84.133.1.119]: The specified session has
been invalidated for some reason.
Software used:
exim4-daemon-heavy_4.50-8_i386.deb
M$ Exchange 2000 SP3 SBE
I searched google but only found some hints about GnuTLS, but nothing in
special.
Does anyone know this problem and has any hints? One solution is to
setup another MTA in the Exchange lan as gateway or not to use TLS at
all. Or use more Exchange servers...no!
Maybe compiling exim against OpenSSL for testing? I looked through the
sources and found EDITME.exim4-light.diff:
# Uncomment these settings if you are using GnuTLS
-# USE_GNUTLS=yes
-# TLS_LIBS=-lgnutls -ltasn1 -lgcrypt
+USE_GNUTLS=yes
+TLS_LIBS=-lgnutls
But I think there is a good reason for using GnuTLS, istn't it? And is
it possible to compile against OpenSSL by just changing these lines?
Thanks for any help and ideas,
Jan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 275 bytes
Desc: OpenPGP digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-exim4-users/attachments/20060413/e3a5a65c/signature.pgp
More information about the Pkg-exim4-users
mailing list