Fix CVE-2016-1531
[exim.git] / test / confs / 2014
1 # Exim test configuration 2014
2
3 CRL=
4
5 exim_path = EXIM_PATH
6 keep_environment =
7 host_lookup_order = bydns
8 primary_hostname = myhost.test.ex
9 rfc1413_query_timeout = 0s
10 spool_directory = DIR/spool
11 log_file_path = DIR/spool/log/%slog
12 gecos_pattern = ""
13 gecos_name = CALLER_NAME
14
15 # ----- Main settings -----
16
17 acl_smtp_rcpt = check_recipient
18
19 log_selector = +tls_peerdn
20
21 queue_only
22 queue_run_in_order
23
24 tls_advertise_hosts = *
25
26 tls_certificate = DIR/aux-fixed/cert1
27 tls_privatekey = DIR/aux-fixed/cert1
28
29 tls_verify_hosts = HOSTIPV4
30 tls_try_verify_hosts = *
31 tls_verify_certificates = DIR/aux-fixed/cert2
32 tls_crl = CRL
33
34
35 # ------ ACL ------
36
37 begin acl
38
39 check_recipient:
40   deny     message = certificate not verified: peerdn=$tls_peerdn
41          ! verify = certificate
42   accept
43
44
45 # ----- Routers -----
46
47 begin routers
48
49 abc:
50   driver = accept
51   retry_use_local_part
52   transport = local_delivery
53
54
55 # ----- Transports -----
56
57 begin transports
58
59 local_delivery:
60   driver = appendfile
61   file = DIR/test-mail/$local_part
62   headers_add = TLS: cipher=$tls_cipher peerdn=$tls_peerdn
63   user = CALLER
64
65 # End