Early yesterday, I detected that our outgoing BATV signatures weren't correctly being verified upon being returned to us, and some Exim debugging confirmed that:
13:06:15 15374 prvscheck: received hash is b745ee 13:06:15 15374 prvscheck: own hash is b745ee 13:06:15 15374 prvscheck: signature expired, $pvrs_result unset
Unfortunately I had to disable BATV until that was fixed. Tom Kistner quickly found the error, which as I'd supposed was a miscalculation in the date. He writes:
Not your fault. An off-by-one error in the expiry date calculation. This happens every 1000 days only. Next occurence would be early in 2011.
which is great, because I don't have to hurry to apply the patch. ;-) And without the patch? Today everything works as expected:
07:45:37 32621 prvscheck: received hash is 5f859e 07:45:37 32621 prvscheck: own hash is 5f859e 07:45:37 32621 prvscheck: success, $pvrs_result set to 1
Now tell me: do you get that kind of support with your multi-million Euro/Dollar enterprise agreement from your wiz-bang company? No. You don't. That kind of support, you get only with Open Source.