Would it (temporary) help to restrict authentication via
auth_advertise_hosts?
- oliver
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscr...@l
On Sat, 30 Sep 2023, Andrew C Aitchison via Exim-users:
I've seen some second hand reports (eg on the mailop list,
which 1) has a closed archive, and 2) seems unreachable this evening)
that the vulnerabilities are in SPA (Microsoft, NTLM) authentication and
libspf2.
So for authentication, only
