Fix CVE-2016-1531
[exim.git] / test / confs / 2030
1 # Exim test configuration 2030
2 # SNI
3
4 SERVER =
5
6 exim_path = EXIM_PATH
7 keep_environment =
8 host_lookup_order = bydns
9 primary_hostname = myhost.test.ex
10 rfc1413_query_timeout = 0s
11 spool_directory = DIR/spool
12 log_file_path = DIR/spool/log/SERVER%slog
13 gecos_pattern = ""
14 gecos_name = CALLER_NAME
15
16
17 # ----- Main settings -----
18
19 domainlist local_domains = test.ex : *.test.ex
20
21 acl_smtp_rcpt = acl_log_sni
22 log_selector = +tls_peerdn +tls_sni
23 remote_max_parallel = 1
24
25 tls_advertise_hosts = *
26
27 # Set certificate only if server
28
29 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
30
31
32 # ------ ACL ------
33
34 begin acl
35
36 acl_log_sni:
37   accept
38          logwrite = SNI <$tls_in_sni>
39
40 # ----- Routers -----
41
42 begin routers
43
44 client:
45   driver = accept
46   condition = ${if !eq {SERVER}{server}}
47   transport = send_to_server${if eq{$local_part}{abcd}{2}{1}}
48
49 server:
50   driver = redirect
51   data = :blackhole:
52
53
54 # ----- Transports -----
55
56 begin transports
57
58 send_to_server1:
59   driver = smtp
60   allow_localhost
61   hosts = HOSTIPV4
62   port = PORT_D
63   tls_sni = fred
64
65 send_to_server2:
66   driver = smtp
67   allow_localhost
68   hosts = HOSTIPV4
69   port = PORT_D
70
71
72 # ----- Retry -----
73
74
75 begin retry
76
77 * * F,5d,10s
78
79
80 # End