Apply timeout consistently to all malware scanner types
[exim.git] / test / confs / 5840
1 # Exim test configuration 5840
2 # DANE
3
4 SERVER=
5
6 exim_path = EXIM_PATH
7 host_lookup_order = bydns
8 primary_hostname = myhost.test.ex
9 spool_directory = DIR/spool
10 log_file_path = DIR/spool/log/SERVER%slog
11 gecos_pattern = ""
12 gecos_name = CALLER_NAME
13
14 # ----- Main settings -----
15
16 acl_smtp_rcpt = accept
17
18 log_selector =  +received_recipients +tls_peerdn +tls_certificate_verified
19
20 queue_run_in_order
21
22 tls_advertise_hosts = *
23
24 # Set certificate only if server
25 CDIR1 = DIR/aux-fixed
26 CDIR2 = DIR/aux-fixed/exim-ca/example.com/server1.example.com
27
28 tls_certificate = ${if eq {SERVER}{server} \
29         {${if or {{eq {DETAILS}{ta}} {eq {DETAILS}{ca}}} \
30                 {CDIR2/fullchain.pem}\
31                 {CDIR1/cert1}}}\
32         fail}
33
34 tls_privatekey = ${if eq {SERVER}{server} \
35         {${if or {{eq {DETAILS}{ta}} {eq {DETAILS}{ca}}} \
36                 {CDIR2/server1.example.com.unlocked.key}\
37                 {CDIR1/cert1}}}\
38         fail}
39
40 # ----- Routers -----
41
42 begin routers
43
44 client:
45   driver = dnslookup
46   condition = ${if eq {SERVER}{}}
47   dnssec_request_domains = *
48   self = send
49   transport = send_to_server
50
51 server:
52   driver = redirect
53   data = :blackhole:
54
55
56 # ----- Transports -----
57
58 begin transports
59
60 send_to_server:
61   driver = smtp
62   allow_localhost
63   port = PORT_D
64
65   hosts_try_dane =     *
66   hosts_require_dane = !thishost.test.ex
67   hosts_request_ocsp = ${if or { {= {4}{$tls_out_tlsa_usage}} \
68                                  {= {0}{$tls_out_tlsa_usage}} } \
69                         {*}{}}
70   tls_verify_cert_hostnames = ${if eq {OPT}{no_certname} {}{*}}
71   tls_try_verify_hosts = thishost.test.ex
72   tls_verify_certificates = CDIR2/ca_chain.pem
73
74
75
76 # ----- Retry -----
77
78
79 begin retry
80
81 * * F,5d,10s
82
83
84 # End