Commit | Line | Data |
---|---|---|
6a11a9e6 JH |
1 | # Exim test configuration 4500 |
2 | ||
3 | SERVER= | |
4 | ||
d4dc049f JH |
5 | .include DIR/aux-var/std_conf_prefix |
6 | ||
6a11a9e6 | 7 | primary_hostname = myhost.test.ex |
6a11a9e6 JH |
8 | |
9 | # ----- Main settings ----- | |
10 | ||
11 | acl_smtp_rcpt = accept | |
a79d8834 | 12 | acl_smtp_dkim = check_dkim |
e34f8ca2 | 13 | acl_smtp_data = check_data |
6a11a9e6 | 14 | |
2c47372f | 15 | log_selector = +dkim_verbose |
6ce1ece9 | 16 | dkim_verify_hashes = sha256 : sha512 : sha1 |
2c47372f | 17 | |
6a11a9e6 JH |
18 | queue_only |
19 | queue_run_in_order | |
20 | ||
a79d8834 JH |
21 | |
22 | begin acl | |
23 | ||
24 | check_dkim: | |
ce93c6d8 JH |
25 | .ifdef BAD |
26 | warn logwrite = ${lookup dnsdb{defer_never,txt=_adsp._domainkey.$dkim_cur_signer}{$value}{unknown}} | |
27 | .endif | |
a79d8834 JH |
28 | .ifdef OPTION |
29 | warn condition = ${if eq {$dkim_algo}{rsa-sha1}} | |
30 | condition = ${if eq {$dkim_verify_status}{pass}} | |
31 | logwrite = NOTE: forcing dkim verify fail (was pass) | |
32 | set dkim_verify_status = fail | |
33 | set dkim_verify_reason = hash too weak | |
34 | .endif | |
2c47372f | 35 | warn |
a79d8834 | 36 | logwrite = signer: $dkim_cur_signer bits: $dkim_key_length |
2c47372f JH |
37 | .ifndef STRICT |
38 | accept | |
39 | .endif | |
a79d8834 | 40 | |
e34f8ca2 JH |
41 | check_data: |
42 | accept logwrite = ${authresults {$primary_hostname}} | |
43 | ||
6a11a9e6 | 44 | # End |