DANE/GnuTLS: ignore traditional CA anchor validation in DANE-EE mode
[exim.git] / test / confs / 4520
1 # Exim test configuration 4520
2
3 SERVER=
4 OPT=
5 FAKE =
6
7 .include DIR/aux-var/std_conf_prefix
8
9 primary_hostname = myhost.test.ex
10
11 # ----- Main settings -----
12
13 acl_smtp_rcpt = accept logwrite = rcpt acl: macro: _DKIM_SIGN_HEADERS
14 acl_smtp_dkim = accept logwrite = dkim_acl: signer: $dkim_cur_signer bits: $dkim_key_length h=$dkim_headernames
15 acl_smtp_data = accept logwrite = data acl: dkim status $dkim_verify_status
16
17 dkim_verify_signers = $dkim_signers : FAKE
18
19 DDIR=DIR/aux-fixed/dkim
20
21
22 # ----- Routers
23
24 begin routers
25
26 server_dump:
27   driver = redirect
28   condition = ${if eq {SERVER}{server}{yes}{no}}
29   data = :blackhole:
30
31 client:
32   driver = accept
33   transport = send_to_server
34
35 # ----- Transports
36
37 begin transports
38
39 send_to_server:
40   driver = smtp
41   allow_localhost
42   hosts = HOSTIPV4
43   port = PORT_D
44
45   dkim_domain =         test.ex
46 .ifdef SELECTOR
47   dkim_selector =       SELECTOR
48 .else
49   dkim_selector =       sel
50 .endif
51
52   dkim_private_key =    ${if match {$dkim_selector}{^ses}       {DDIR/dkim512.private} \
53                           {${if match {$dkim_selector}{^sel} {DDIR/dkim.private} \
54                           {}}}}
55
56 .ifndef HEADERS_MAXSIZE
57   dkim_sign_headers =   OPT
58 .else
59   dkim_identity =       allheaders@$dkim_domain
60 .endif
61 .ifdef VALUE
62   dkim_hash =           VALUE
63 .endif
64
65 # End