Exim 4.80 improves security
The Exim developers have published version 4.80 of their message transfer agent (MTA), a major update to the internet mailer. The default OpenSSL options in the new release are now said to be more secure; this has been done by adding support for TLS 1.1 and TLS 1.2, when using OpenSSL 1.0.1 or later, and disabling SSLv2 by default.
Other changes include updates to GnuTLS support, LDAP improvements,
accept_8bitmime enabled by default and the addition of new authentication drivers. Support for using the TLS Server Name Indication (SNI) extension, both as client and as server, has also been added allowing the server to present different TLS identities to clients on the same port.
Exim's developers note that the update also introduces backwards incompatible changes affecting OpenSSL, GnuTLS and LDAP. As such, users upgrading to 4.80 are advised to read the included README.UPDATING file before installing the new version.
More details about this update, including a full list of fixes, can be found in the mailing list announcement, in the change log and in the updated documentation. Exim 4.80 can be downloaded from one of the project's mirrors. Developed at the University of Cambridge, Exim is licensed under the terms of the GPLv2.