Merge branch 'exim-4.96+security'
[exim.git] / test / confs / 4060
1 # test config 4060
2 # Pipelining the early part of the SMTP conversation, starttls
3
4 CONTROL=*
5 OPT=
6 CONNECTCOND=
7
8 keep_environment = PATH
9 add_environment = SSLKEYLOGFILE=DIR/spool/sslkeys
10 exim_path = EXIM_PATH
11 host_lookup_order = bydns
12 spool_directory = DIR/spool
13
14 .ifdef SERVER
15 log_file_path = DIR/spool/log/SERVER%slog
16 .else
17 log_file_path = DIR/spool/log/%slog
18 .endif
19
20 gecos_pattern = ""
21 gecos_name = CALLER_NAME
22 dns_cname_loops = 9
23 chunking_advertise_hosts = OPT
24 tls_advertise_hosts = *
25 tls_certificate = DIR/aux-fixed/cert1
26
27 .ifdef _HAVE_TLS_CA_CACHE
28 tls_verify_certificates = system,cache
29 .endif
30
31 .ifdef _HAVE_DMARC
32 dmarc_tld_file =
33 .endif
34
35 # Avoid ECDHE key-exchange so that we can wireshark-decode (not TLS1.3)
36 .ifdef _HAVE_GNUTLS
37 tls_require_ciphers = NORMAL:-KX-ALL:+RSA
38 .else
39 tls_require_ciphers = DEFAULT:!kECDHE
40 .endif
41
42 pipelining_connect_advertise_hosts = CONTROL
43 log_selector = +received_recipients +millisec +pipelining
44 queue_only
45
46 acl_smtp_rcpt = accept
47
48 #
49 begin routers
50
51 server:
52   driver =      redirect
53   condition =   ${if eq {SERVER}{server}}
54   data =        :blackhole:
55
56 client:
57   driver =      manualroute
58   route_data =  127.0.0.1::PORT_D
59   self =        send
60   transport =   smtp
61
62 #
63 begin transports
64
65 smtp:
66   driver =              smtp
67   hosts_try_fastopen =  CONNECTCOND
68   hosts_pipe_connect =  CONTROL
69   tls_verify_hosts =
70   tls_try_verify_hosts =
71