Fix CVE-2016-1531
[users/jgh/exim.git] / test / confs / 4028
1 # Exim test configuration 4028
2 # starttls over socks
3
4 OPT =
5 SERVER=
6
7 exim_path = EXIM_PATH
8 keep_environment =
9 host_lookup_order = bydns
10 primary_hostname = myhost.test.ex
11 spool_directory = DIR/spool
12 log_file_path = DIR/spool/log/SERVER%slog
13 gecos_pattern = ""
14 gecos_name = CALLER_NAME
15
16 # ----- Main settings -----
17
18 log_selector =  +tls_peerdn
19 domainlist local_domains = test.ex : *.test.ex
20 acl_smtp_rcpt = accept
21
22 tls_advertise_hosts = *
23
24 # Set certificate only if server
25
26 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
27 tls_privatekey = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
28
29 tls_verify_hosts = *
30 tls_verify_certificates = ${if eq {SERVER}{server}{DIR/aux-fixed/cert2}fail}
31
32 # ----- Routers -----
33
34 begin routers
35
36 client:
37   driver = manualroute
38   condition = ${if eq {SERVER}{server}{no}{yes}}
39   route_list = * 127.0.0.1
40   self = send
41   transport = my_smtp
42   no_more
43
44 server:
45   driver = redirect
46   data = :blackhole:
47
48
49 # ----- Transports -----
50
51 begin transports
52
53 my_smtp:
54   driver = smtp
55   port = PORT_D
56   socks_proxy = 127.0.0.1 port=1080 OPT
57   tls_certificate = DIR/aux-fixed/cert2
58   tls_privatekey = DIR/aux-fixed/cert2
59   tls_verify_certificates = DIR/aux-fixed/cert2
60   tls_try_verify_hosts = *
61
62
63
64 # End