fixup! WIP: allow_insecure_tainted_data
[users/heiko/exim.git] / test / confs / 5891
index 190ce253731d1505644168ea59ce0f1e9ee4e1ab..89ee8fd53f439aefa414821584729a3324cde866 100644 (file)
@@ -1,7 +1,7 @@
 # Exim test configuration 5891
 
 SERVER =
-OPTION =
+OPTION = NORMAL
 
 .include DIR/aux-var/tls_conf_prefix
 
@@ -15,7 +15,6 @@ acl_smtp_helo = check_helo
 acl_smtp_rcpt = check_recipient
 log_selector = +received_recipients +tls_resumption +tls_peerdn
 
-openssl_options = +no_sslv2 +no_sslv3 +single_dh_use OPTION
 tls_advertise_hosts = *
 
 # Set certificate only if server
@@ -26,6 +25,7 @@ tls_certificate = CDIR/server1.example.com/server1.example.com.chain.pem
 tls_privatekey =  CDIR/server1.example.com/server1.example.com.unlocked.key
 tls_ocsp_file =   CDIR/server1.example.com/server1.example.com.ocsp.good.resp
 
+tls_require_ciphers = OPTION
 tls_resumption_hosts = 127.0.0.1
 
 
@@ -100,6 +100,7 @@ send_to_server2:
   allow_localhost
   hosts = HOSTIPV4
   port = PORT_D
+  hosts_try_fastopen = :
   tls_verify_certificates =    CDIR/CA/CA.pem
   tls_verify_cert_hostnames =  :
   event_action =               ${acl {log_resumption}}