https://bugs.exim.org/show_bug.cgi?id=1885
--- Comment #16 from Thaddeus H. Black ---
Created attachment 928
--> https://bugs.exim.org/attachment.cgi?id=928&action=edit
Client's log of an actual unauthorized relay.
--
You are receiving this mail because:
You are on the CC list for the bug.
--
https://bugs.exim.org/show_bug.cgi?id=1885
--- Comment #17 from Thaddeus H. Black ---
Created attachment 929
--> https://bugs.exim.org/attachment.cgi?id=929&action=edit
Client's log of an actual authorized relay.
--
You are receiving this mail because:
You are on the CC list for the bug.
--
https://bugs.exim.org/show_bug.cgi?id=1885
--- Comment #18 from Thaddeus H. Black ---
Created attachment 930
--> https://bugs.exim.org/attachment.cgi?id=930&action=edit
Server's log of two actual relays -- unauthorized, then authorized.
--
You are receiving this mail because:
You are on the C
https://bugs.exim.org/show_bug.cgi?id=1885
--- Comment #19 from Thaddeus H. Black ---
Jeremy Harris suggested:
> The apparent randomness and/or first-try-only behaviour might be affected by
history maintained at either end, notably in the hints databases. For test
purposes I suggest wiping them
https://bugs.exim.org/show_bug.cgi?id=1885
--- Comment #20 from Thaddeus H. Black ---
And now I see that this issue is mentioned in a Debian man page,
exim4-config_files(5). Apparently, it is a real, longstanding problem without
a known solution. The relevant excerpt from the man page follows.
https://bugs.exim.org/show_bug.cgi?id=1835
Jeremy Harris changed:
What|Removed |Added
Status|ASSIGNED|RESOLVED
Resolution|---
https://bugs.exim.org/show_bug.cgi?id=1902
Bug ID: 1902
Summary: generated DH parameters for Openssl
Product: Exim
Version: 4.87
Hardware: All
OS: All
Status: NEW
Severity: wishlist
Priority: med
https://bugs.exim.org/show_bug.cgi?id=1902
--- Comment #1 from Phil Pennock ---
The older standards primes are subject to precomputation-aided attacks.
The whole point of the ones in the appendix of RFC 7919 is that they're
"nothing up my sleeve" values, intended to not be subject to
precomputat