fixup! WIP: allow_insecure_tainted_data
[users/heiko/exim.git] / test / confs / 1101
1 # Exim test configuration 1101
2 # The test uses the same config for two Exim processes
3 #
4 #              ,------ callout -------.
5 #              |                      |
6 #              |      .----------.    |
7 #              `--> PORT_S       |    |
8 # client-anytls --> PORT_D  Exim |----'
9 #                     `----------'
10
11 .include DIR/aux-var/tls_conf_prefix
12
13 primary_hostname = myhost.test.ex
14
15 # ----- Main settings -----
16
17 tls_advertise_hosts = *
18
19 tls_certificate = DIR/aux-fixed/cert1
20 tls_privatekey = DIR/aux-fixed/cert1
21
22 acl_smtp_rcpt = acl_check_rcpt
23
24 begin acl
25 acl_check_rcpt:
26
27     accept condition = ${if eq{$received_port}{PORT_S}}
28            message   = Accepted (rcpt on backend)
29
30     accept verify  = recipient/callout=no_cache
31            message = Accepted (rcpt via callout)
32
33 begin routers
34 catchall:
35     driver = accept
36     transport = local_smtp
37
38 begin transports
39 local_smtp:
40     driver =            smtp
41     port =              PORT_S
42     hosts =             127.0.0.1
43     allow_localhost
44     hosts_require_tls = *
45     tls_verify_certificates =   DIR/aux-fixed/cert1
46     tls_verify_cert_hostnames = :
47
48 # End