Pkg exim4 users - Nov 2009 - swaks tls error

Hi

Just installed Lenny onto a Kurobox and now trying to get exim4 to work
with tls.

I''ve generally followed the instructions at
http://www.pigstye.net/2006/09/26/exim4-with-courier-imap-using-maildirs

Testing the TLS and Authentication with swaks I get an error:




:/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
=== Trying localhost:25...
=== Connected to localhost.
<-  220 x.y.z ESMTP Exim 4.69 Thu, 26 Nov 2009 19:15:32 +0000
 -> EHLO x.y.z
<-  250-x.y.z Hello localhost [127.0.0.1]
<-  250-SIZE 52428800
<-  250-PIPELINING
<-  250-STARTTLS
<-  250 HELP
 -> STARTTLS
*** Remote host closed connection unexpectedly.



my update-exim4.conf.conf contains


dc_eximconfig_configtype=''smarthost''
dc_other_hostnames=''x.y.z''
dc_local_interfaces=''127.0.0.1;192.168.x.y''
dc_readhost=''''
dc_relay_domains=''''
dc_minimaldns=''false''
dc_relay_nets=''127.0.0.1;192.168.x.0/24;192.168.x.0/24;192.168.x.0/24''
dc_smarthost=''smtp.xyz.co.uk''
CFILEMODE=''644''
dc_use_split_config=''true''
dc_hide_mailname=''false''
dc_mailname_in_oh=''true''
dc_localdelivery=''maildir_home''


I have added MAIN_TLS_ENABLE = true
to /etc/exim4/conf.d/main# more 00_local_settings


Is there any thing else that I need to do?

Thanks for any help that you can pass on.
James

"James Hosken" <james at jamesho.co.uk> writes:
> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
> === Trying localhost:25...
> === Connected to localhost.
> <-  220 x.y.z ESMTP Exim 4.69 Thu, 26 Nov 2009 19:15:32 +0000
>  -> EHLO x.y.z
> <-  250-x.y.z Hello localhost [127.0.0.1]
> <-  250-SIZE 52428800
> <-  250-PIPELINING
> <-  250-STARTTLS
> <-  250 HELP
>  -> STARTTLS
> *** Remote host closed connection unexpectedly.
What''s in the exim4 log?  Looks to me like it is dying.

/Simon

Simon Josefsson wrote:
> "James Hosken" <james at jamesho.co.uk> writes:
>
>> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
>> === Trying localhost:25...
>> === Connected to localhost.
>> <-  220 x.y.z ESMTP Exim 4.69 Thu, 26 Nov 2009 19:15:32 +0000
>>  -> EHLO x.y.z
>> <-  250-x.y.z Hello localhost [127.0.0.1]
>> <-  250-SIZE 52428800
>> <-  250-PIPELINING
>> <-  250-STARTTLS
>> <-  250 HELP
>>  -> STARTTLS
>> *** Remote host closed connection unexpectedly.
>
> What''s in the exim4 log?  Looks to me like it is dying.
>
> /Simon
>

Noting in either the mainlog or the paniclog.
Its odd.

James

-- 
James Hosken
james at jamesho.co.uk
http://www.jamesho.co.uk
GnuPG Key ID: 0x44CB1D7

"James Hosken" <james at jamesho.co.uk> writes:
> Simon Josefsson wrote:
>> "James Hosken" <james at jamesho.co.uk> writes:
>>
>>> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
>>> === Trying localhost:25...
>>> === Connected to localhost.
>>> <-  220 x.y.z ESMTP Exim 4.69 Thu, 26 Nov 2009 19:15:32 +0000
>>>  -> EHLO x.y.z
>>> <-  250-x.y.z Hello localhost [127.0.0.1]
>>> <-  250-SIZE 52428800
>>> <-  250-PIPELINING
>>> <-  250-STARTTLS
>>> <-  250 HELP
>>>  -> STARTTLS
>>> *** Remote host closed connection unexpectedly.
>>
>> What''s in the exim4 log?  Looks to me like it is dying.
>>
>> /Simon
>>
>
>
> Noting in either the mainlog or the paniclog.
> Its odd.
Nothing at all?  There should be something about an incoming connection,
at least.  But I''m no expert on debugging exim servers, maybe someone
else can give advice on that.  If the problem is GnuTLS related, it
would be good if you can somehow run exim4 server under gdb and get a
backtrace.

/Simon

James Hosken <james at jamesho.co.uk> wrote:
> Simon Josefsson wrote:
>> "James Hosken" <james at jamesho.co.uk> writes:
>>> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
[...]
>>> <-  250 HELP
>>>  -> STARTTLS
>>> *** Remote host closed connection unexpectedly.
>> What''s in the exim4 log?  Looks to me like it is dying.
> Noting in either the mainlog or the paniclog.
> Its odd.
Hello,
Please try with debugging.

# Stop daemon
/etc/init.d/exim4 stop
# Start a smtp listner in foreground on port 3333, you can later stop
# it by pressing <Ctrl>-C
exim4 -bd -d+all -oX 127.0.0.1:3333
swaks -a -tls -q HELO -s localhost -au root -ap ''<>'' -p
3333

cu andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.''
`I sew his ears on from time to time, sure''

Andreas Metzler wrote:
> James Hosken <james at jamesho.co.uk> wrote:
>> Simon Josefsson wrote:
>>> "James Hosken" <james at jamesho.co.uk> writes:
>
>>>> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
> [...]
>>>> <-  250 HELP
>>>>  -> STARTTLS
>>>> *** Remote host closed connection unexpectedly.
>
>>> What''s in the exim4 log?  Looks to me like it is dying.
>
>> Noting in either the mainlog or the paniclog.
>> Its odd.
>
> Hello,
> Please try with debugging.
>
> # Stop daemon
> /etc/init.d/exim4 stop
> # Start a smtp listner in foreground on port 3333, you can later stop
> # it by pressing <Ctrl>-C
> exim4 -bd -d+all -oX 127.0.0.1:3333
> swaks -a -tls -q HELO -s localhost -au root -ap
''<>'' -p 3333
>
> cu andreas
Thanks for that.

Here''s the output
# swaks -a -tls -q HELO -s localhost -au root -ap ''<>''
-p 3333
=== Trying localhost:3333...
=== Connected to localhost.
<-  220 borrowdale.jamesho.co.uk ESMTP Exim 4.69 Fri, 04 Dec 2009 20:39:29
+0000
 -> EHLO borrowdale.jamesho.co.uk
<-  250-borrowdale.jamesho.co.uk Hello localhost [127.0.0.1]
<-  250-SIZE 52428800
<-  250-PIPELINING
<-  250-STARTTLS
<-  250 HELP
 -> STARTTLS
*** Remote host closed connection unexpectedly.


Here is the out put of the mainlog
2009-12-04 20:35:54 exim 4.69 daemon started: pid=1837, no queue runs,
listening for SMTP on [127.0.0.1]:3333


There is nothing in the paniclog.
Any ideas.

James



-- 
James Hosken
james at jamesho.co.uk
http://www.jamesho.co.uk
GnuPG Key ID: 0x44CB1D7

James Hosken wrote:
>
> Andreas Metzler wrote:
>> James Hosken <james at jamesho.co.uk> wrote:
>>> Simon Josefsson wrote:
>>>> "James Hosken" <james at jamesho.co.uk> writes:
>>
>>>>> :/etc# swaks -a -tls -q HELO -s localhost -au root -ap
''<>''
>> [...]
>>>>> <-  250 HELP
>>>>>  -> STARTTLS
>>>>> *** Remote host closed connection unexpectedly.
>>
>>>> What''s in the exim4 log?  Looks to me like it is
dying.
>>
>>> Noting in either the mainlog or the paniclog.
>>> Its odd.
>>
>> Hello,
>> Please try with debugging.
>>
>> # Stop daemon
>> /etc/init.d/exim4 stop
>> # Start a smtp listner in foreground on port 3333, you can later stop
>> # it by pressing <Ctrl>-C
>> exim4 -bd -d+all -oX 127.0.0.1:3333
>> swaks -a -tls -q HELO -s localhost -au root -ap
''<>'' -p 3333
>>
>> cu andreas
>
> Thanks for that.
>
> Here''s the output
> # swaks -a -tls -q HELO -s localhost -au root -ap
''<>'' -p 3333
> === Trying localhost:3333...
> === Connected to localhost.
> <-  220 borrowdale.jamesho.co.uk ESMTP Exim 4.69 Fri, 04 Dec 2009
20:39:29
> +0000
>  -> EHLO borrowdale.jamesho.co.uk
> <-  250-borrowdale.jamesho.co.uk Hello localhost [127.0.0.1]
> <-  250-SIZE 52428800
> <-  250-PIPELINING
> <-  250-STARTTLS
> <-  250 HELP
>  -> STARTTLS
> *** Remote host closed connection unexpectedly.
>
>
> Here is the out put of the mainlog
> 2009-12-04 20:35:54 exim 4.69 daemon started: pid=1837, no queue runs,
> listening for SMTP on [127.0.0.1]:3333
>
>
> There is nothing in the paniclog.
> Any ideas.
>
> James
>
Here''s the output after running.


# exim4 -bd -d+all -oX 127.0.0.1:3333
20:35:53  1837 Exim version 4.69 uid=0 gid=0 pid=1837 D=fffdffff
Berkeley DB: Berkeley DB 4.6.21: (September 27, 2007)
Support for: crypteq iconv() IPv6 GnuTLS move_frozen_messages
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb
dsearch nis nis0 passwd
Authenticators: cram_md5 plaintext
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
20:35:53  1837 changed uid/gid: forcing real = effective
20:35:53  1837   uid=0 gid=0 pid=1837
20:35:53  1837   auxiliary group list: <none>
20:35:54  1837 seeking password data for user "uucp": cache not
available
20:35:54  1837 getpwnam() succeeded uid=10 gid=10
20:35:54  1837 configuration file is /var/lib/exim4/config.autogenerated
20:35:54  1837 log selectors = 00000ffc 00612001
20:35:54  1837 cwd=/var/log/exim4 5 args: exim4 -bd -d+all -oX 127.0.0.1:3333
20:35:54  1837 trusted user
20:35:54  1837 admin user
20:35:54  1837 seeking password data for user "mail": cache not
available
20:35:54  1837 getpwnam() succeeded uid=8 gid=8
20:35:54  1837 expanding: $1
20:35:54  1837    result: root
20:35:54  1837 user name "root" extracted from gecos field
"root"
20:35:54  1837 originator: uid=0 gid=0 login=root name=root
20:35:54  1837 daemon_smtp_port overridden by -oX:
20:35:54  1837   <: 3333
20:35:54  1837 local_interfaces overridden by -oX:
20:35:54  1837   <: 127.0.0.1
20:35:54  1837 listening on 127.0.0.1 port 3333
20:35:54  1837 changed uid/gid: running as a daemon
20:35:54  1837   uid=103 gid=104 pid=1837
20:35:54  1837   auxiliary group list: 45 104
20:35:54  1837 LOG: MAIN
20:35:54  1837   exim 4.69 daemon started: pid=1837, no queue runs,
listening for SMTP on [127.0.0.1]:3333
20:35:54  1837 set_process_info:  1837 daemon: no queue runs, listening
for SMTP on [127.0.0.1]:3333
20:35:54  1837 daemon running with uid=103 gid=104 euid=103 egid=104
20:35:54  1837 Listening...
20:37:24  1837 Connection request from 127.0.0.1 port 47297
20:37:24  1837 interface address=127.0.0.1 port=3333
20:37:24  1837 search_tidyup called
20:37:24  1850 host in rfc1413_hosts? yes (matched "*")
20:37:24  1850 doing ident callback
20:37:24  1850 ident connection to 127.0.0.1 failed: Connection refused
20:37:24  1850 sender_fullhost = [127.0.0.1]
20:37:24  1850 sender_rcvhost = [127.0.0.1]
20:37:24  1850 Process 1850 is handling incoming connection from [127.0.0.1]
20:37:24  1850 host in host_lookup? yes (matched "*")
20:37:24  1850 looking up host name for 127.0.0.1
20:37:24  1850 DNS lookup of 1.0.0.127.in-addr.arpa (PTR) succeeded
20:37:24  1850 IP address lookup yielded localhost
20:37:24  1850 gethostbyname2(af=inet6) returned 1 (HOST_NOT_FOUND)
20:37:24  1850 gethostbyname2 looked up these IP addresses:
20:37:24  1850   name=localhost address=127.0.0.1
20:37:24  1850 checking addresses for localhost
20:37:24  1850   127.0.0.1 OK
20:37:24  1850 sender_fullhost = localhost [127.0.0.1]
20:37:24  1850 sender_rcvhost = localhost ([127.0.0.1])
20:37:24  1850 set_process_info:  1850 handling incoming connection from
localhost [127.0.0.1]
20:37:24  1850 host in host_reject_connection? no (option unset)
20:37:24  1850 host in sender_unqualified_hosts? no (option unset)
20:37:24  1850 host in recipient_unqualified_hosts? no (option unset)
20:37:24  1850 host in helo_verify_hosts? no (option unset)
20:37:24  1850 host in helo_try_verify_hosts? no (option unset)
20:37:24  1850 host in helo_accept_junk_hosts? no (option unset)
20:37:24  1850 expanding: $smtp_active_hostname ESMTP Exim $version_number
$tod_full
20:37:24  1850    result: <sniped my ip address> ESMTP Exim 4.69 Fri, 04
Dec 2009 20:37:24 +0000
20:37:24  1850 SMTP>> 220 <sniped my ip address> ESMTP Exim 4.69
Fri, 04
Dec 2009 20:37:24 +0000
20:37:24  1850 Process 1850 is ready for new message
20:37:24  1850 smtp_setup_msg entered
20:37:24  1837 1 SMTP accept process running
20:37:24  1837 Listening...
20:37:24  1850 SMTP<< EHLO <sniped my ip address>
20:37:24  1850 sender_fullhost = localhost (<sniped my ip address>)
[127.0.0.1]
20:37:24  1850 sender_rcvhost = localhost ([127.0.0.1] helo=<sniped my ip
address>)
20:37:24  1850 set_process_info:  1850 handling incoming connection from
localhost (<sniped my ip address>) [127.0.0.1]
20:37:24  1850 host in pipelining_advertise_hosts? yes (matched "*")
20:37:24  1850 host in auth_advertise_hosts? yes (matched "*")
20:37:24  1850 expanding: $tls_cipher
20:37:24  1850    result:
20:37:24  1850 expanding:
20:37:24  1850    result:
20:37:24  1850 condition: eq{$tls_cipher}{}
20:37:24  1850    result: true
20:37:24  1850 expanding:
20:37:24  1850    result:
20:37:24  1850 expanding: *
20:37:24  1850    result: *
20:37:24  1850 skipping: result is not used
20:37:24  1850 expanding: ${if eq{$tls_cipher}{}{}{*}}
20:37:24  1850    result:
20:37:24  1850 expanding: $tls_cipher
20:37:24  1850    result:
20:37:24  1850 expanding:
20:37:24  1850    result:
20:37:24  1850 condition: eq{$tls_cipher}{}
20:37:24  1850    result: true
20:37:24  1850 expanding:
20:37:24  1850    result:
20:37:24  1850 expanding: *
20:37:24  1850    result: *
20:37:24  1850 skipping: result is not used
20:37:24  1850 expanding: ${if eq{$tls_cipher}{}{}{*}}
20:37:24  1850    result:
20:37:24  1850 host in tls_advertise_hosts? yes (matched "*")
20:37:24  1850 SMTP>> 250-<sniped my ip address> Hello localhost
[127.0.0.1]
20:37:24  1850 250-SIZE 52428800
20:37:24  1850 250-PIPELINING
20:37:24  1850 250-STARTTLS
20:37:24  1850 250 HELP
20:37:24  1850 SMTP<< STARTTLS
20:37:24  1850 initializing GnuTLS as a server
Fatal: no entropy gathering module detected
20:37:24  1837 child 1850 ended: status=0x6
20:37:24  1837 0 SMTP accept processes now running
20:37:24  1837 Listening...
20:39:29  1837 Connection request from 127.0.0.1 port 47298
20:39:29  1837 interface address=127.0.0.1 port=3333
20:39:29  1837 search_tidyup called
20:39:29  1854 host in rfc1413_hosts? yes (matched "*")
20:39:29  1854 doing ident callback
20:39:29  1854 ident connection to 127.0.0.1 failed: Connection refused
20:39:29  1854 sender_fullhost = [127.0.0.1]
20:39:29  1854 sender_rcvhost = [127.0.0.1]
20:39:29  1854 Process 1854 is handling incoming connection from [127.0.0.1]
20:39:29  1854 host in host_lookup? yes (matched "*")
20:39:29  1854 looking up host name for 127.0.0.1
20:39:29  1854 DNS lookup of 1.0.0.127.in-addr.arpa (PTR) succeeded
20:39:29  1854 IP address lookup yielded localhost
20:39:29  1854 gethostbyname2(af=inet6) returned 1 (HOST_NOT_FOUND)
20:39:29  1854 gethostbyname2 looked up these IP addresses:
20:39:29  1854   name=localhost address=127.0.0.1
20:39:29  1854 checking addresses for localhost
20:39:29  1854   127.0.0.1 OK
20:39:29  1854 sender_fullhost = localhost [127.0.0.1]
20:39:29  1854 sender_rcvhost = localhost ([127.0.0.1])
20:39:29  1854 set_process_info:  1854 handling incoming connection from
localhost [127.0.0.1]
20:39:29  1854 host in host_reject_connection? no (option unset)
20:39:29  1854 host in sender_unqualified_hosts? no (option unset)
20:39:29  1854 host in recipient_unqualified_hosts? no (option unset)
20:39:29  1854 host in helo_verify_hosts? no (option unset)
20:39:29  1854 host in helo_try_verify_hosts? no (option unset)
20:39:29  1854 host in helo_accept_junk_hosts? no (option unset)
20:39:29  1854 expanding: $smtp_active_hostname ESMTP Exim $version_number
$tod_full
20:39:29  1854    result: <sniped my ip address> ESMTP Exim 4.69 Fri, 04
Dec 2009 20:39:29 +0000
20:39:29  1854 SMTP>> 220 <sniped my ip address> ESMTP Exim 4.69
Fri, 04
Dec 2009 20:39:29 +0000
20:39:29  1854 Process 1854 is ready for new message
20:39:29  1854 smtp_setup_msg entered
20:39:29  1837 1 SMTP accept process running
20:39:29  1837 Listening...
20:39:29  1854 SMTP<< EHLO <sniped my ip address>
20:39:29  1854 sender_fullhost = localhost (<sniped my ip address>)
[127.0.0.1]
20:39:29  1854 sender_rcvhost = localhost ([127.0.0.1] helo=<sniped my ip
address>)
20:39:29  1854 set_process_info:  1854 handling incoming connection from
localhost (<sniped my ip address>) [127.0.0.1]
20:39:29  1854 host in pipelining_advertise_hosts? yes (matched "*")
20:39:29  1854 host in auth_advertise_hosts? yes (matched "*")
20:39:29  1854 expanding: $tls_cipher
20:39:29  1854    result:
20:39:29  1854 expanding:
20:39:29  1854    result:
20:39:29  1854 condition: eq{$tls_cipher}{}
20:39:29  1854    result: true
20:39:29  1854 expanding:
20:39:29  1854    result:
20:39:29  1854 expanding: *
20:39:29  1854    result: *
20:39:29  1854 skipping: result is not used
20:39:29  1854 expanding: ${if eq{$tls_cipher}{}{}{*}}
20:39:29  1854    result:
20:39:29  1854 expanding: $tls_cipher
20:39:29  1854    result:
20:39:29  1854 expanding:
20:39:29  1854    result:
20:39:29  1854 condition: eq{$tls_cipher}{}
20:39:29  1854    result: true
20:39:29  1854 expanding:
20:39:29  1854    result:
20:39:29  1854 expanding: *
20:39:29  1854    result: *
20:39:29  1854 skipping: result is not used
20:39:29  1854 expanding: ${if eq{$tls_cipher}{}{}{*}}
20:39:29  1854    result:
20:39:29  1854 host in tls_advertise_hosts? yes (matched "*")
20:39:29  1854 SMTP>> 250-<sniped my ip address> Hello localhost
[127.0.0.1]
20:39:29  1854 250-SIZE 52428800
20:39:29  1854 250-PIPELINING
20:39:29  1854 250-STARTTLS
20:39:29  1854 250 HELP
20:39:29  1854 SMTP<< STARTTLS
20:39:29  1854 initializing GnuTLS as a server
Fatal: no entropy gathering module detected
20:39:29  1837 child 1854 ended: status=0x6
20:39:29  1837 0 SMTP accept processes now running
20:39:29  1837 Listening...


Any help would be gratefully appreciated.
Thanks
James


-- 
James Hosken
james at jamesho.co.uk
http://www.jamesho.co.uk
GnuPG Key ID: 0x44CB1D7

James Hosken <james at jamesho.co.uk> wrote:
[...]
> 20:39:29  1854 SMTP<< STARTTLS
> 20:39:29  1854 initializing GnuTLS as a server
> Fatal: no entropy gathering module detected
[...]

The copy of libgcrypt11 that exim is linked against seems to be
broken. I would be quite surprised if the Debian packages
suffer from this problem, do you have a locally built copy, perhaps in
/usr/local/lib?

cu andreas

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.''
`I sew his ears on from time to time, sure''

Andreas Metzler wrote:
> James Hosken <james at jamesho.co.uk> wrote:
> [...]
>> 20:39:29  1854 SMTP<< STARTTLS
>> 20:39:29  1854 initializing GnuTLS as a server
>> Fatal: no entropy gathering module detected
> [...]
>
> The copy of libgcrypt11 that exim is linked against seems to be
> broken. I would be quite surprised if the Debian packages
> suffer from this problem, do you have a locally built copy, perhaps in
> /usr/local/lib?
>
> cu andreas
Thanks for the pointer.
I''m installing debian on a Kurobox (PowerPC NAS), it was with a
customised
install. I''ve now reinstalled libgcrypt11.


Now running     exim4 -bd -d+all -oX 127.0.0.1:3333
gives

# exim4 -bd -d+all -oX 127.0.0.1:3333
18:45:41  2688 Exim version 4.69 uid=0 gid=0 pid=2688 D=fffdffff
Berkeley DB: Berkeley DB 4.6.21: (September 27, 2007)
Support for: crypteq iconv() IPv6 GnuTLS move_frozen_messages
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb
dsearch nis nis0 passwd
Authenticators: cram_md5 plaintext
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
18:45:41  2688 changed uid/gid: forc# exim4 -bd -d+all -oX 127.0.0.1:3333
18:45:41  2688 Exim version 4.69 uid=0 gid=0 pid=2688 D=fffdffff
Berkeley DB: Berkeley DB 4.6.21: (September 27, 2007)
Support for: crypteq iconv() IPv6 GnuTLS move_frozen_messages
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb
dsearch nis nis0 passwd
Authenticators: cram_md5 plaintext
Routers: accept dnslookup ipliteral manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
18:45:41  2688 changed uid/gid: forcing real = effective
18:45:41  2688   uid=0 gid=0 pid=2688
18:45:41  2688   auxiliary group list: <none>
18:45:41  2688 seeking password data for user "uucp": cache not
available
18:45:41  2688 getpwnam() succeeded uid=10 gid=10
18:45:41  2688 configuration file is /var/lib/exim4/config.autogenerated
18:45:41  2688 log selectors = 00000ffc 00612001
18:45:41  2688 cwd=/root 5 args: exim4 -bd -d+all -oX 127.0.0.1:3333
18:45:41  2688 trusted user
18:45:41  2688 admin user
18:45:41  2688 seeking password data for user "mail": cache not
available
18:45:41  2688 getpwnam() succeeded uid=8 gid=8
18:45:41  2688 expanding: $1
18:45:41  2688    result: root
18:45:41  2688 user name "root" extracted from gecos field
"root"
18:45:41  2688 originator: uid=0 gid=0 login=root name=root
18:45:41  2688 daemon_smtp_port overridden by -oX:
18:45:41  2688   <: 3333
18:45:41  2688 local_interfaces overridden by -oX:
18:45:41  2688   <: 127.0.0.1
18:45:41  2688 listening on 127.0.0.1 port 3333
18:45:41  2688 changed uid/gid: running as a daemon
18:45:41  2688   uid=103 gid=104 pid=2688
18:45:41  2688   auxiliary group list: 45 104
18:45:41  2688 LOG: MAIN
18:45:41  2688   exim 4.69 daemon started: pid=2688, no queue runs,
listening for SMTP on [127.0.0.1]:3333
18:45:41  2688 set_process_info:  2688 daemon: no queue runs, listening
for SMTP on [127.0.0.1]:3333
18:45:41  2688 daemon running with uid=103 gid=104 euid=103 egid=104
18:45:41  2688 Listening...
ing real = effective
18:45:41  2688   uid=0 gid=0 pid=2688
18:45:41  2688   auxiliary group list: <none>
18:45:41  2688 seeking password data for user "uucp": cache not
available
18:45:41  2688 getpwnam() succeeded uid=10 gid=10
18:45:41  2688 configuration file is /var/lib/exim4/config.autogenerated
18:45:41  2688 log selectors = 00000ffc 00612001
18:45:41  2688 cwd=/root 5 args: exim4 -bd -d+all -oX 127.0.0.1:3333
18:45:41  2688 trusted user
18:45:41  2688 admin user
18:45:41  2688 seeking password data for user "mail": cache not
available
18:45:41  2688 getpwnam() succeeded uid=8 gid=8
18:45:41  2688 expanding: $1
18:45:41  2688    result: root
18:45:41  2688 user name "root" extracted from gecos field
"root"
18:45:41  2688 originator: uid=0 gid=0 login=root name=root
18:45:41  2688 daemon_smtp_port overridden by -oX:
18:45:41  2688   <: 3333
18:45:41  2688 local_interfaces overridden by -oX:
18:45:41  2688   <: 127.0.0.1
18:45:41  2688 listening on 127.0.0.1 port 3333
18:45:41  2688 changed uid/gid: running as a daemon
18:45:41  2688   uid=103 gid=104 pid=2688
18:45:41  2688   auxiliary group list: 45 104
18:45:41  2688 LOG: MAIN
18:45:41  2688   exim 4.69 daemon started: pid=2688, no queue runs,
listening for SMTP on [127.0.0.1]:3333
18:45:41  2688 set_process_info:  2688 daemon: no queue runs, listening
for SMTP on [127.0.0.1]:3333
18:45:41  2688 daemon running with uid=103 gid=104 euid=103 egid=104
18:45:41  2688 Listening...


Which I can not see any obvious errors with.

mainlog shows
2009-12-05 18:45:41 exim 4.69 daemon started: pid=2688, no queue runs,
listening for SMTP on [127.0.0.1]:3333

There is nothing in the paniclog.



Then running swaks -a -tls -q HELO -s localhost -au root -ap
''<>''

# swaks -a -tls -q HELO -s localhost -au root -ap ''<>''
=== Trying localhost:25...
*** Error connecting 0.0.0.0 to localhost:25:
*** 	IO::Socket::INET: connect: Connection refused



If I start via  /etc/init.d/exim4 start
Then running swaks -a -tls -q HELO -s localhost -au root -ap
''<>''

# swaks -a -tls -q HELO -s localhost -au root -ap ''<>''
=== Trying localhost:25...
=== Connected to localhost.
<-  220 <sniped IP> ESMTP Exim 4.69 Sat, 05 Dec 2009 18:50:40 +0000
 -> EHLO <sniped IP>
<-  250-<sniped IP> Hello localhost [127.0.0.1]
<-  250-SIZE 52428800
<-  250-PIPELINING
<-  250-STARTTLS
<-  250 HELP
 -> STARTTLS
*** Remote host closed connection unexpectedly.



mainlog shows

2009-12-05 18:50:36 exim 4.69 daemon started: pid=3072, -q30m, listening
for SMTP on [127.0.0.1]:25 [192.168.40.11]:25
2009-12-05 18:50:36 Start queue run: pid=3073
2009-12-05 18:50:36 End queue run: pid=3073


There is nothing in the paniclog.


The log files don''t really help as far as I can tell.
James

Andreas Metzler <ametzler at downhill.at.eu.org>
wrote:
> James Hosken <james at jamesho.co.uk> wrote:
> [...]
>> 20:39:29  1854 SMTP<< STARTTLS
>> 20:39:29  1854 initializing GnuTLS as a server
>> Fatal: no entropy gathering module detected
> [...]
> The copy of libgcrypt11 that exim is linked against seems to be
> broken. I would be quite surprised if the Debian packages
> suffer from this problem, do you have a locally built copy, perhaps in
> /usr/local/lib?
Hello,

let me correct that. I get this error message if either /dev/random or
/dev/urandom are missing or inaccessible.
cu andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.''
`I sew his ears on from time to time, sure''

Andreas Metzler wrote:
> Andreas Metzler <ametzler at downhill.at.eu.org> wrote:
>> James Hosken <james at jamesho.co.uk> wrote:
>> [...]
>>> 20:39:29  1854 SMTP<< STARTTLS
>>> 20:39:29  1854 initializing GnuTLS as a server
>>> Fatal: no entropy gathering module detected
>> [...]
>
>> The copy of libgcrypt11 that exim is linked against seems to be
>> broken. I would be quite surprised if the Debian packages
>> suffer from this problem, do you have a locally built copy, perhaps in
>> /usr/local/lib?
>
> Hello,
>
> let me correct that. I get this error message if either /dev/random or
> /dev/urandom are missing or inaccessible.
> cu andreas
Spot on!
I changed
crw-r----- 1 root root    1,  8 2009-04-19 12:28 random
crw-r----- 1 root root 1, 9 2009-12-06 15:12 urandom

to

crw-rw-rw- 1 root root 1, 9 2009-12-06 14:52 urandom
crw-rw-rw- 1 root root 1, 8 2009-12-06 14:52 random

and it now works. Thanks for all the help.
James