Package: exim4 Version: 4.63-17 Severity: minor It should be clarified in the documentation that tls_verify_hosts only applies to TLS sessions. That is, if a sending host matched in tls_verify_hosts does not attempt to use TLS, it can still send messages unencrypted.
This makes tls_verify_hosts pretty useless, but that's just my humble opinion... Regards, Oskar Liljeblad ([EMAIL PROTECTED]) -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.21.1 Locale: LANG=C, LC_CTYPE=en_GB.ISO-8859-1 (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/bash Versions of packages exim4 depends on: ii debconf [debconf-2.0] 1.5.13 Debian configuration management sy ii exim4-base 4.67-1 support files for all exim MTA (v4 ii exim4-daemon-heavy 4.67-1 exim MTA (v4) daemon with extended exim4 recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

