Fix CVE-2016-1531
[users/jgh/exim.git] / test / confs / 2030
1 # Exim test configuration 2030
2 # SNI
3
4 SERVER =
5
6 exim_path = EXIM_PATH
7 keep_environment =
8 host_lookup_order = bydns
9 primary_hostname = myhost.test.ex
10 spool_directory = DIR/spool
11 log_file_path = DIR/spool/log/SERVER%slog
12 gecos_pattern = ""
13 gecos_name = CALLER_NAME
14
15
16 # ----- Main settings -----
17
18 domainlist local_domains = test.ex : *.test.ex
19
20 acl_smtp_rcpt = acl_log_sni
21 log_selector = +tls_peerdn +tls_sni
22 remote_max_parallel = 1
23
24 tls_advertise_hosts = *
25
26 # Set certificate only if server
27
28 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
29
30
31 # ------ ACL ------
32
33 begin acl
34
35 acl_log_sni:
36   accept
37          logwrite = SNI <$tls_in_sni>
38
39 # ----- Routers -----
40
41 begin routers
42
43 client:
44   driver = accept
45   condition = ${if !eq {SERVER}{server}}
46   transport = send_to_server${if eq{$local_part}{abcd}{2}{1}}
47
48 server:
49   driver = redirect
50   data = :blackhole:
51
52
53 # ----- Transports -----
54
55 begin transports
56
57 send_to_server1:
58   driver = smtp
59   allow_localhost
60   hosts = HOSTIPV4
61   port = PORT_D
62   tls_sni = fred
63
64 send_to_server2:
65   driver = smtp
66   allow_localhost
67   hosts = HOSTIPV4
68   port = PORT_D
69
70
71 # ----- Retry -----
72
73
74 begin retry
75
76 * * F,5d,10s
77
78
79 # End