[exim] Re: Exim 4.92 to 4.94 upgrade breaking

2024-07-01 Thread Andrew C Aitchison via Exim-users
Jeff Brown via Exim-users wrote: After upgrading this instance of exim I cannot send an email as an authorised user to an outside domain. I get e.g: 2024-06-27 15:26:07 H=([192.168.1.55]) [165.165.192.254] X=TLS1.3:ECDHE_X25519__RSA_PSS_RSAE_SHA256__AES_128_GCM:128 CV=no F= rejected RCPT : r

[exim] Re: Problems with outgoing DANE-TLSA, when CA-anchored test fails

2024-07-01 Thread Viktor Dukhovni via Exim-users
On Sun, Jun 30, 2024 at 11:32:58PM +0200, Wolfgang via Exim-users wrote: > I have problems connecting DANE configured hosts, when the MX has a > correct TLSA-RR but an valid certificate (letsencrypt) with the wrong > CN. This is required and expected behaviour. See: https://datatracker.ietf.

[exim] Problems with outgoing DANE-TLSA, when CA-anchored test fails

2024-07-01 Thread Wolfgang via Exim-users
Hello, I have problems connecting DANE configured hosts, when the MX has a correct TLSA-RR but an valid certificate (letsencrypt) with the wrong CN. I cases with self-signed certs and correct TLSA-RR there are no problems. With the correct CN in an valid certificate and correct TLSA-RR everythin

[exim] Re: Exim 4.92 to 4.94 upgrade breaking

2024-07-01 Thread Thomas Hochstein via Exim-users
Jeff Brown via Exim-users wrote: > After upgrading this instance of exim I cannot send an email as an > authorised user to an outside domain. I get e.g: > > 2024-06-27 15:26:07 H=([192.168.1.55]) [165.165.192.254] > X=TLS1.3:ECDHE_X25519__RSA_PSS_RSAE_SHA256__AES_128_GCM:128 CV=no > F= rejecte