X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/6cda585a113e2f9192663338d241cec0e5bbfe23..b8fc75b3728d523ae83d02de92e1cfb002d25c9d:/src/src/EDITME diff --git a/src/src/EDITME b/src/src/EDITME index 95857c707..41b929bdf 100644 --- a/src/src/EDITME +++ b/src/src/EDITME @@ -410,6 +410,25 @@ EXIM_MONITOR=eximon.bin # DISABLE_DKIM=yes +#------------------------------------------------------------------------------ +# Uncomment the following line to remove Per-Recipient-Data-Response support. + +# DISABLE_PRDR=yes + +#------------------------------------------------------------------------------ +# Uncomment the following line to remove OCSP stapling support in TLS, +# from Exim. Note it can only be supported when built with +# GnuTLS 3.1.3 or later, or OpenSSL + +# DISABLE_OCSP=yes + +#------------------------------------------------------------------------------ +# By default, Exim has support for checking the AD bit in a DNS response, to +# determine if DNSSEC validation was successful. If your system libraries +# do not support that bit, then set DISABLE_DNSSEC to "yes" + +# DISABLE_DNSSEC=yes + #------------------------------------------------------------------------------ # Compiling Exim with experimental features. These are documented in @@ -447,12 +466,41 @@ EXIM_MONITOR=eximon.bin # CFLAGS += -I/opt/brightmail/bsdk-6.0/include # LDFLAGS += -lxml2_single -lbmiclient_single -L/opt/brightmail/bsdk-6.0/lib -# Uncomment the following line to add OCSP stapling support in TLS, if Exim -# was built using OpenSSL. +# Uncomment the following line to add DMARC checking capability, implemented +# using libopendmarc libraries. +# EXPERIMENTAL_DMARC=yes +# CFLAGS += -I/usr/local/include +# LDFLAGS += -lopendmarc + + +# Uncomment the following line to support Events, +# eg. for logging to a database. +# EXPERIMENTAL_EVENT=yes + +# Uncomment the following line to add Redis lookup support +# You need to have hiredis installed on your system (https://github.com/redis/hiredis). +# Depending on where it is installed you may have to edit the CFLAGS and LDFLAGS lines. +# EXPERIMENTAL_REDIS=yes +# CFLAGS += -I/usr/local/include +# LDFLAGS += -lhiredis -# EXPERIMENTAL_OCSP=yes +# Uncomment the following line to enable Experimental Proxy Protocol +# EXPERIMENTAL_PROXY=yes +# Uncomment the following line to enable support for checking certiticate +# ownership +# EXPERIMENTAL_CERTNAMES=yes +# Uncomment the following line to add DANE support +# EXPERIMENTAL_DANE=yes + +# Uncomment the following line to add SOCKS support +# EXPERIMENTAL_SOCKS=yes + +# Uncomment the following to add Internationalisation features. You need to +# have the IDN library installed. +#EXPERIMENTAL_INTERNATIONAL=yes +#LDFLAGS += -lidn ############################################################################### # THESE ARE THINGS YOU MIGHT WANT TO SPECIFY # @@ -701,6 +749,13 @@ HEADERS_CHARSET="ISO-8859-1" # USE_GNUTLS_PC=gnutls # TLS_LIBS=-lgnutls -ltasn1 -lgcrypt +# The security fix we provide with the gnutls_allow_auto_pkcs11 option +# (4.82 PP/09) introduces a compatibility regression. The symbol is +# not available if GnuTLS is build without p11-kit (--without-p11-kit +# configure option). In this case use AVOID_GNUTLS_PKCS11=yes when +# building Exim. +# AVOID_GNUTLS_PKCS11=yes + # If you are running Exim as a server, note that just building it with TLS # support is not all you need to do. You also need to set up a suitable # certificate, and tell Exim about it by means of the tls_certificate