2 # Pipelining the early part of the SMTP conversation, starttls
8 keep_environment = PATH
10 host_lookup_order = bydns
11 spool_directory = DIR/spool
14 log_file_path = DIR/spool/log/SERVER%slog
16 log_file_path = DIR/spool/log/%slog
20 gecos_name = CALLER_NAME
22 chunking_advertise_hosts = OPT
23 tls_advertise_hosts = *
24 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
30 # Avoid ECDHE key-exchange so that we can wireshark-decode (not TLS1.3)
32 tls_require_ciphers = NORMAL:-KX-ALL:+RSA
34 tls_require_ciphers = DEFAULT:!kECDHE
37 pipelining_connect_advertise_hosts = *
38 log_selector = +received_recipients +millisec +pipelining
41 acl_smtp_rcpt = accept
48 condition = ${if eq {SERVER}{server}}
53 route_data = 127.0.0.1::PORT_D
62 hosts_try_fastopen = CONNECTCOND
63 hosts_pipe_connect = CONTROL
65 tls_try_verify_hosts =