Ok, we've got several servers that are fouling up recently at the company I work for.
Basically exim is hanging indefinately after the STARTTLS smtp command. This has been verified on several hosts, and followed a recent mass-update of cpanel
On the example host:
WHM 9.2.0 cPanel 9.2.0-S25
RedHat 7.2 - WHM X v2.1.2
A few elementary attempts have been made to stop TLS from starting alltogether, but to no avail. The /etc/exim.conf entries that specifies all the TLS information has been commented out, but when the foreign host advertises the TLS service, the server starts the handshake no matter what. A verbose mail test verified all this, and will follow.
1. How can I completely stop TLS connections from being started(other than commenting out the exim.conf entries)?
2. If commenting these out is the only way, do I need to take special steps afterwards(or startup flags/arguments) to force exim to follow these guidelines?
3. Any ideas on what the root cause of this issue is? Some possibilities would be
bad openSSL version
bad luck in general
We actually did try updating to version 4.x a while back. There were amazing amounts of problems almost instantly. The main reason we've been using exim over some other software package is that the damn thing doesnt crash. Once 4.x was introduced a bunch of segfaults started happening which weren't resolved.
Anyway, there are plenty of servers that are not experiencing this issue, any word on a possible fix for this version?