Commit | Line | Data |
---|---|---|
dc9c8f8b | 1 | ### No certificate, certificate required |
54c5ebb1 PH |
2 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
3 | ??? 220 | |
4 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 5 | >>> ehlo rhu1.barb |
54c5ebb1 | 6 | ??? 250- |
5c8cda3a | 7 | <<< 250-myhost.test.ex Hello rhu1.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
8 | ??? 250- |
9 | <<< 250-SIZE 52428800 | |
10 | ??? 250- | |
5b456975 JH |
11 | <<< 250-8BITMIME |
12 | ??? 250- | |
54c5ebb1 PH |
13 | <<< 250-PIPELINING |
14 | ??? 250- | |
15 | <<< 250-STARTTLS | |
16 | ??? 250 | |
17 | <<< 250 HELP | |
18 | >>> starttls | |
19 | ??? 220 | |
20 | <<< 220 TLS go ahead | |
21 | Attempting to start TLS | |
60d10ce7 | 22 | A TLS fatal alert has been received. |
54c5ebb1 | 23 | Failed to start TLS |
099afc4f JH |
24 | >>> nop |
25 | ????554 | |
54c5ebb1 | 26 | End of script |
dc9c8f8b | 27 | ### No certificate, certificate optional at TLS time, required by ACL |
54c5ebb1 PH |
28 | Connecting to 127.0.0.1 port 1225 ... connected |
29 | ??? 220 | |
30 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 31 | >>> ehlo rhu2.barb |
54c5ebb1 | 32 | ??? 250- |
5c8cda3a | 33 | <<< 250-myhost.test.ex Hello rhu2.barb [127.0.0.1] |
54c5ebb1 PH |
34 | ??? 250- |
35 | <<< 250-SIZE 52428800 | |
36 | ??? 250- | |
5b456975 JH |
37 | <<< 250-8BITMIME |
38 | ??? 250- | |
54c5ebb1 PH |
39 | <<< 250-PIPELINING |
40 | ??? 250- | |
41 | <<< 250-STARTTLS | |
42 | ??? 250 | |
43 | <<< 250 HELP | |
44 | >>> starttls | |
45 | ??? 220 | |
46 | <<< 220 TLS go ahead | |
47 | Attempting to start TLS | |
48 | Succeeded in starting TLS | |
5c8cda3a | 49 | >>> helo rhu2tls.barb |
54c5ebb1 | 50 | ??? 250 |
5c8cda3a | 51 | <<< 250 myhost.test.ex Hello rhu2tls.barb [127.0.0.1] |
54c5ebb1 PH |
52 | >>> mail from:<userx@test.ex> |
53 | ??? 250 | |
54 | <<< 250 OK | |
55 | >>> rcpt to:<userx@test.ex> | |
56 | ??? 550 | |
57 | <<< 550 certificate not verified: peerdn= | |
58 | >>> quit | |
59 | ??? 221 | |
60 | <<< 221 myhost.test.ex closing connection | |
61 | End of script | |
dc9c8f8b | 62 | ### Good certificate, certificate required |
54c5ebb1 | 63 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
64 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem |
65 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
54c5ebb1 PH |
66 | ??? 220 |
67 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 68 | >>> ehlo rhu3.barb |
54c5ebb1 | 69 | ??? 250- |
5c8cda3a | 70 | <<< 250-myhost.test.ex Hello rhu3.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
71 | ??? 250- |
72 | <<< 250-SIZE 52428800 | |
73 | ??? 250- | |
5b456975 JH |
74 | <<< 250-8BITMIME |
75 | ??? 250- | |
54c5ebb1 PH |
76 | <<< 250-PIPELINING |
77 | ??? 250- | |
78 | <<< 250-STARTTLS | |
79 | ??? 250 | |
80 | <<< 250 HELP | |
81 | >>> starttls | |
82 | ??? 220 | |
83 | <<< 220 TLS go ahead | |
84 | Attempting to start TLS | |
85 | Succeeded in starting TLS | |
86 | >>> mail from:<userx@test.ex> | |
87 | ??? 250 | |
88 | <<< 250 OK | |
89 | >>> rcpt to:<userx@test.ex> | |
90 | ??? 250 | |
91 | <<< 250 Accepted | |
92 | >>> quit | |
93 | ??? 221 | |
94 | <<< 221 myhost.test.ex closing connection | |
95 | End of script | |
dc9c8f8b | 96 | ### Good certificate, certificate optional at TLS time, checked by ACL |
54c5ebb1 | 97 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
98 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem |
99 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
54c5ebb1 PH |
100 | ??? 220 |
101 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 102 | >>> ehlo rhu4.barb |
54c5ebb1 | 103 | ??? 250- |
5c8cda3a | 104 | <<< 250-myhost.test.ex Hello rhu4.barb [127.0.0.1] |
54c5ebb1 PH |
105 | ??? 250- |
106 | <<< 250-SIZE 52428800 | |
107 | ??? 250- | |
5b456975 JH |
108 | <<< 250-8BITMIME |
109 | ??? 250- | |
54c5ebb1 PH |
110 | <<< 250-PIPELINING |
111 | ??? 250- | |
112 | <<< 250-STARTTLS | |
113 | ??? 250 | |
114 | <<< 250 HELP | |
115 | >>> starttls | |
116 | ??? 220 | |
117 | <<< 220 TLS go ahead | |
118 | Attempting to start TLS | |
119 | Succeeded in starting TLS | |
120 | >>> mail from:<userx@test.ex> | |
121 | ??? 250 | |
122 | <<< 250 OK | |
123 | >>> rcpt to:<userx@test.ex> | |
124 | ??? 250 | |
125 | <<< 250 Accepted | |
126 | >>> quit | |
127 | ??? 221 | |
128 | <<< 221 myhost.test.ex closing connection | |
129 | End of script | |
dc9c8f8b | 130 | ### Bad certificate, certificate required |
54c5ebb1 | 131 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
132 | Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem |
133 | Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key | |
54c5ebb1 PH |
134 | ??? 220 |
135 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 136 | >>> ehlo rhu5.barb |
54c5ebb1 | 137 | ??? 250- |
5c8cda3a | 138 | <<< 250-myhost.test.ex Hello rhu5.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
139 | ??? 250- |
140 | <<< 250-SIZE 52428800 | |
141 | ??? 250- | |
5b456975 JH |
142 | <<< 250-8BITMIME |
143 | ??? 250- | |
54c5ebb1 PH |
144 | <<< 250-PIPELINING |
145 | ??? 250- | |
146 | <<< 250-STARTTLS | |
147 | ??? 250 | |
148 | <<< 250 HELP | |
149 | >>> starttls | |
150 | ??? 220 | |
151 | <<< 220 TLS go ahead | |
152 | Attempting to start TLS | |
dc9c8f8b JH |
153 | A TLS fatal alert has been received. |
154 | Failed to start TLS | |
099afc4f JH |
155 | >>> nop |
156 | ????554 | |
54c5ebb1 | 157 | End of script |
dc9c8f8b | 158 | ### Bad certificate, certificate optional at TLS time, reject at ACL time |
54c5ebb1 | 159 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
160 | Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem |
161 | Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key | |
54c5ebb1 PH |
162 | ??? 220 |
163 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 164 | >>> ehlo rhu6.barb |
54c5ebb1 | 165 | ??? 250- |
5c8cda3a | 166 | <<< 250-myhost.test.ex Hello rhu6.barb [127.0.0.1] |
54c5ebb1 PH |
167 | ??? 250- |
168 | <<< 250-SIZE 52428800 | |
169 | ??? 250- | |
5b456975 JH |
170 | <<< 250-8BITMIME |
171 | ??? 250- | |
54c5ebb1 PH |
172 | <<< 250-PIPELINING |
173 | ??? 250- | |
174 | <<< 250-STARTTLS | |
175 | ??? 250 | |
176 | <<< 250 HELP | |
177 | >>> starttls | |
178 | ??? 220 | |
179 | <<< 220 TLS go ahead | |
180 | Attempting to start TLS | |
181 | Succeeded in starting TLS | |
182 | >>> mail from:<userx@test.ex> | |
183 | ??? 250 | |
184 | <<< 250 OK | |
185 | >>> rcpt to:<userx@test.ex> | |
54c5ebb1 | 186 | ??? 550 |
dc9c8f8b | 187 | <<< 550 certificate not verified: peerdn= |
54c5ebb1 PH |
188 | >>> quit |
189 | ??? 221 | |
190 | <<< 221 myhost.test.ex closing connection | |
191 | End of script | |
dc9c8f8b | 192 | ### Otherwise good but revoked certificate, certificate required |
54c5ebb1 | 193 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
194 | Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem |
195 | Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key | |
54c5ebb1 PH |
196 | ??? 220 |
197 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 198 | >>> ehlo rhu7.barb |
54c5ebb1 | 199 | ??? 250- |
5c8cda3a | 200 | <<< 250-myhost.test.ex Hello rhu7.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
201 | ??? 250- |
202 | <<< 250-SIZE 52428800 | |
203 | ??? 250- | |
5b456975 JH |
204 | <<< 250-8BITMIME |
205 | ??? 250- | |
54c5ebb1 PH |
206 | <<< 250-PIPELINING |
207 | ??? 250- | |
208 | <<< 250-STARTTLS | |
209 | ??? 250 | |
210 | <<< 250 HELP | |
211 | >>> starttls | |
212 | ??? 220 | |
213 | <<< 220 TLS go ahead | |
214 | Attempting to start TLS | |
b2ba9267 JH |
215 | A TLS fatal alert has been received. |
216 | Failed to start TLS | |
217 | >>> mail from:<userx@test.ex> | |
218 | ??? 554 | |
219 | <<< 554 Security failure | |
54c5ebb1 | 220 | End of script |
dc9c8f8b | 221 | ### Revoked certificate, certificate optional at TLS time, reject at ACL time |
54c5ebb1 | 222 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
223 | Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem |
224 | Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key | |
54c5ebb1 PH |
225 | ??? 220 |
226 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 227 | >>> ehlo rhu8.barb |
54c5ebb1 | 228 | ??? 250- |
5c8cda3a | 229 | <<< 250-myhost.test.ex Hello rhu8.barb [127.0.0.1] |
54c5ebb1 PH |
230 | ??? 250- |
231 | <<< 250-SIZE 52428800 | |
232 | ??? 250- | |
5b456975 JH |
233 | <<< 250-8BITMIME |
234 | ??? 250- | |
54c5ebb1 PH |
235 | <<< 250-PIPELINING |
236 | ??? 250- | |
237 | <<< 250-STARTTLS | |
238 | ??? 250 | |
239 | <<< 250 HELP | |
240 | >>> starttls | |
241 | ??? 220 | |
242 | <<< 220 TLS go ahead | |
243 | Attempting to start TLS | |
244 | Succeeded in starting TLS | |
245 | >>> mail from:<userx@test.ex> | |
246 | ??? 250 | |
247 | <<< 250 OK | |
248 | >>> rcpt to:<userx@test.ex> | |
54c5ebb1 | 249 | ??? 550 |
dc9c8f8b JH |
250 | <<< 550 certificate not verified: peerdn=CN=revoked1.example.com |
251 | >>> quit | |
252 | ??? 221 | |
253 | <<< 221 myhost.test.ex closing connection | |
254 | End of script | |
255 | ### Good certificate, certificate required - but nonmatching CRL also present | |
256 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected | |
257 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem | |
258 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
259 | ??? 220 | |
260 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
099afc4f | 261 | >>> ehlo rhu9.barb |
dc9c8f8b | 262 | ??? 250- |
099afc4f | 263 | <<< 250-myhost.test.ex Hello rhu9.barb [ip4.ip4.ip4.ip4] |
dc9c8f8b JH |
264 | ??? 250- |
265 | <<< 250-SIZE 52428800 | |
266 | ??? 250- | |
267 | <<< 250-8BITMIME | |
268 | ??? 250- | |
269 | <<< 250-PIPELINING | |
270 | ??? 250- | |
271 | <<< 250-STARTTLS | |
272 | ??? 250 | |
273 | <<< 250 HELP | |
274 | >>> starttls | |
275 | ??? 220 | |
276 | <<< 220 TLS go ahead | |
277 | Attempting to start TLS | |
278 | Succeeded in starting TLS | |
279 | >>> mail from:<userx@test.ex> | |
280 | ??? 250 | |
281 | <<< 250 OK | |
282 | >>> rcpt to:<userx@test.ex> | |
283 | ??? 250 | |
284 | <<< 250 Accepted | |
54c5ebb1 PH |
285 | >>> quit |
286 | ??? 221 | |
287 | <<< 221 myhost.test.ex closing connection | |
288 | End of script | |
dc9c8f8b JH |
289 | |
290 | ******** SERVER ******** | |
291 | ### No certificate, certificate required | |
292 | ### No certificate, certificate optional at TLS time, required by ACL | |
293 | ### Good certificate, certificate required | |
294 | ### Good certificate, certificate optional at TLS time, checked by ACL | |
295 | ### Bad certificate, certificate required | |
296 | ### Bad certificate, certificate optional at TLS time, reject at ACL time | |
297 | ### Otherwise good but revoked certificate, certificate required | |
298 | ### Revoked certificate, certificate optional at TLS time, reject at ACL time | |
299 | ### Good certificate, certificate required - but nonmatching CRL also present |