Retire EXPERIMENTAL_REQUIRETLS
[users/jgh/exim.git] / test / confs / 4065
1 # test config 4065
2 # Early-pipe, AUTH, GnuTLS, tls-on-connect
3
4 keep_environment = PATH
5 exim_path = EXIM_PATH
6 host_lookup_order = bydns
7 spool_directory = DIR/spool
8
9 .ifdef SERVER
10 log_file_path = DIR/spool/log/SERVER%slog
11 .else
12 log_file_path = DIR/spool/log/%slog
13 .endif
14
15 gecos_pattern = ""
16 gecos_name = CALLER_NAME
17 dns_cname_loops = 9
18 chunking_advertise_hosts =
19 tls_on_connect_ports = PORT_D
20 tls_advertise_hosts = *
21 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
22
23 # Avoid ECDHE key-exchange so that we can wireshark-decode
24 .ifdef _HAVE_GNUTLS
25 tls_require_ciphers = NORMAL:-KX-ALL:+RSA
26 .endif
27
28 pipelining_connect_advertise_hosts = *
29 auth_advertise_hosts = *
30
31 log_selector = +received_recipients +pipelining
32 queue_only
33
34 acl_smtp_rcpt = accept
35
36 #
37 begin routers
38
39 server:
40   driver =      redirect
41   condition =   ${if eq {SERVER}{server}}
42   data =        :blackhole:
43
44 client:
45   driver =      manualroute
46   route_data =  127.0.0.1
47   self =        send
48   transport =   smtp
49
50 #
51 begin transports
52
53 smtp:
54   driver =              smtp
55   hosts_pipe_connect =  *
56   protocol =            smtps
57   port =                PORT_D
58   tls_verify_hosts =
59   tls_try_verify_hosts =
60   hosts_require_auth =  *
61
62 #
63 begin authenticators
64
65 plain:
66   driver = plaintext
67   public_name = PLAIN
68
69   server_condition = "\
70     ${if and {{eq{$auth2}{userx}}{eq{$auth3}{secret}}}{yes}{no}}"
71   server_set_id = $auth2
72
73   client_send = ^userx^secret
74