redirect router: taint-enforce filenames
[exim.git] / test / confs / 4500
1 # Exim test configuration 4500
2
3 SERVER=
4
5 .include DIR/aux-var/std_conf_prefix
6
7 primary_hostname = myhost.test.ex
8
9 # ----- Main settings -----
10
11 acl_smtp_rcpt = accept
12 acl_smtp_dkim = check_dkim
13 acl_smtp_data = check_data
14
15 log_selector = +dkim_verbose
16 dkim_verify_hashes = sha256 : sha512 : sha1
17
18 queue_only
19 queue_run_in_order
20
21
22 begin acl
23
24 check_dkim:
25 .ifdef BAD
26   warn  logwrite =      ${lookup dnsdb{defer_never,txt=_adsp._domainkey.$dkim_cur_signer}{$value}{unknown}}
27 .endif
28 .ifdef OPTION
29   warn  condition =     ${if eq {$dkim_algo}{rsa-sha1}}
30         condition =     ${if eq {$dkim_verify_status}{pass}}
31         logwrite =      NOTE: forcing dkim verify fail (was pass)
32         set dkim_verify_status = fail
33         set dkim_verify_reason = hash too weak
34 .endif
35   warn
36         logwrite = signer: $dkim_cur_signer bits: $dkim_key_length
37 .ifndef STRICT
38   accept
39 .endif
40
41 check_data:
42   accept logwrite = ${authresults {$primary_hostname}}
43
44 # End