Warning: No server certificate defined; TLS connections will fail
Hello,
I ran upcp --force earlier and everything appeared to be hunky dory after completion.
However this has now begun to appear in exim_mainlog:
tls_advertise_hosts has * as its value in the Exim advanced editor. A valid service certificate exists for all services, FTP, Exim, Dovecot et al on the server. Anyone else come across this and is there a remedy? Thank you!
2016-06-03 17:40:53 Warning: No server certificate defined; TLS connections will fail.
Suggested action: either install a certificate or change tls_advertise_hosts optiontls_advertise_hosts has * as its value in the Exim advanced editor. A valid service certificate exists for all services, FTP, Exim, Dovecot et al on the server. Anyone else come across this and is there a remedy? Thank you!
-
Hello :), Have you installed ConfigServer MailScanner on your server ? I think due to MailScanner your are facing this issues with the exim service. 0 -
G'day @24x7server, we do not use Mailscanner. Thanks for the thought though! 0 -
G'day @24x7server, we do not use Mailscanner. Thanks for the thought though!
It is happening to me as well. Do you use CloudLINUX?0 -
Maybe reinstalling the certificate is in order. 0 -
@Secmas, yes we are CloudLinux. The error message is no longer showing in exim_paniclog for us though. It only happened after the upcp --force and has since stopped presenting. 0 -
Hello, You will notice those warnings in Exim 4.86 based on the following changes: JH/04 Certificate name checking on server certificates, when exim is a client, is now done by default. The transport option tls_verify_cert_hostnames can be used to disable this per-host. The build option EXPERIMENTAL_CERTNAMES is withdrawn. JH/06 Verification of the server certificate for a TLS connection is now tried (but not required) by default. The verification status is now logged by default, for both outbound TLS and client-certificate supplying inbound TLS connections
Note that while you see the warning messages in /var/log/exim_mainlog, it should not result in any issues with mail delivery by default. Thank you.0
Please sign in to leave a comment.
Comments
6 comments