Package: exim4
Version: 4.50-8
Severity: important
Hello,
since applying the latest security updates exim4 does not initialize nor
accept successfully TLS connections.
>From the remote side:
2005-11-09 08:38:41 1EZkSZ-0003Kc-Pn SMTP timeout while connected to hermes.frankfurt.de.velia.net [85.195.64.15] after STARTTLS: Connection timed out
2005-11-09 08:38:41 1EZkSZ-0003Kc-Pn == <email address hidden> R=xxxxxxxxxxxxxx T=remote_smtp defer (110): Connection timed out: SMTP timeout while connected to hermes.frankfurt.de.velia.net [85.195.64.15] after STARTTLS
2005-11-09 09:02:46 1EZkpt-0003Wf-Hh SMTP timeout while connected to hermes.frankfurt.de.velia.net [85.195.64.15] after STARTTLS: Connection timed out
2005-11-09 09:02:46 1EZkpt-0003Wf-Hh SMTP timeout while connected to hermes.frankfurt.de.velia.net [85.195.64.15] after STARTTLS: Connection timed out
On the local side, there is no notification in the logfile, until the
exim processes are killed manually, they simply do not respond:
2005-11-09 09:28:31 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:28:31 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:28:31 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:28:31 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:37:47 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:37:47 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
2005-11-09 09:37:47 SMTP connection from proteus.wiesbaden.de.velia.net [151.189.12.60] closed after SIGTERM
Workaround:
Disable TLS in the cofiguration (tls_advertise_hosts = !*)(hosts_avoid_tls=*)
This bug might be openssl-related since it was included in recent
updates.
-- Package-specific info:
Exim version 4.50 #1 built 27-May-2005 08:10:05
Copyright (c) University of Cambridge 2004
Berkeley DB: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
Support for: iconv() IPv6 PAM Perl GnuTLS Content_Scanning Old_Demime
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql
Authenticators: cram_md5 cyrus_sasl plaintext spa
Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Configuration file is /etc/exim4/exim4.conf
# /etc/exim4/update-exim4.conf.conf
#
# Edit this file and /etc/mailname by hand and execute update-exim4.conf
# yourself or use 'dpkg-reconfigure exim4-config'
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.14
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Versions of packages exim4 depends on:
ii exim4-base 4.50-8 support files for all exim MTA (v4
ii exim4-daemon-heavy 4.50-8 exim MTA (v4) daemon with extended
Package: exim4
Version: 4.50-8
Severity: important
Hello,
since applying the latest security updates exim4 does not initialize nor
accept successfully TLS connections.
>From the remote side:
2005-11-09 08:38:41 1EZkSZ-0003Kc-Pn SMTP timeout while connected to hermes. frankfurt. de.velia. net [85.195.64.15] after STARTTLS: Connection timed out frankfurt. de.velia. net [85.195.64.15] after STARTTLS frankfurt. de.velia. net [85.195.64.15] after STARTTLS: Connection timed out frankfurt. de.velia. net [85.195.64.15] after STARTTLS: Connection timed out
2005-11-09 08:38:41 1EZkSZ-0003Kc-Pn == <email address hidden> R=xxxxxxxxxxxxxx T=remote_smtp defer (110): Connection timed out: SMTP timeout while connected to hermes.
2005-11-09 09:02:46 1EZkpt-0003Wf-Hh SMTP timeout while connected to hermes.
2005-11-09 09:02:46 1EZkpt-0003Wf-Hh SMTP timeout while connected to hermes.
On the local side, there is no notification in the logfile, until the
exim processes are killed manually, they simply do not respond:
2005-11-09 09:28:31 SMTP connection from proteus. wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM wiesbaden. de.velia. net [151.189.12.60] closed after SIGTERM
2005-11-09 09:28:31 SMTP connection from proteus.
2005-11-09 09:28:31 SMTP connection from proteus.
2005-11-09 09:28:31 SMTP connection from proteus.
2005-11-09 09:37:47 SMTP connection from proteus.
2005-11-09 09:37:47 SMTP connection from proteus.
2005-11-09 09:37:47 SMTP connection from proteus.
Workaround: hosts = !*)(hosts_ avoid_tls= *)
Disable TLS in the cofiguration (tls_advertise_
This bug might be openssl-related since it was included in recent
updates.
-- Package-specific info: maildir/ mailstore/ mbx autoreply lmtp pipe smtp exim4.conf update- exim4.conf. conf
Exim version 4.50 #1 built 27-May-2005 08:10:05
Copyright (c) University of Cambridge 2004
Berkeley DB: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
Support for: iconv() IPv6 PAM Perl GnuTLS Content_Scanning Old_Demime
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql
Authenticators: cram_md5 cyrus_sasl plaintext spa
Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
Transports: appendfile/
Fixed never_users: 0
Configuration file is /etc/exim4/
# /etc/exim4/
#
# Edit this file and /etc/mailname by hand and execute update-exim4.conf
# yourself or use 'dpkg-reconfigure exim4-config'
dc_eximconfig_ configtype= 'internet' hostnames= 'hermes. frankfurt. de.velia. net' interfaces= '' 'false' split_config= 'false' in_oh=' true' hermes. frankfurt. de.velia. net
dc_other_
dc_local_
dc_readhost=''
dc_relay_domains=''
dc_minimaldns=
dc_relay_nets=''
dc_smarthost=''
CFILEMODE='644'
dc_use_
dc_hide_mailname=''
dc_mailname_
mailname:
-- System Information: de_DE.UTF- 8 (charmap=UTF-8)
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.14
Locale: LANG=de_DE.UTF-8, LC_CTYPE=
Versions of packages exim4 depends on:
ii exim4-base 4.50-8 support files for all exim MTA (v4
ii exim4-daemon-heavy 4.50-8 exim MTA (v4) daemon with extended
-- no debconf information