Commit | Line | Data |
---|---|---|
dc9c8f8b | 1 | ### No certificate, certificate required |
54c5ebb1 PH |
2 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
3 | ??? 220 | |
4 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 5 | >>> ehlo rhu1.barb |
54c5ebb1 | 6 | ??? 250- |
5c8cda3a | 7 | <<< 250-myhost.test.ex Hello rhu1.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
8 | ??? 250- |
9 | <<< 250-SIZE 52428800 | |
10 | ??? 250- | |
5b456975 JH |
11 | <<< 250-8BITMIME |
12 | ??? 250- | |
54c5ebb1 PH |
13 | <<< 250-PIPELINING |
14 | ??? 250- | |
15 | <<< 250-STARTTLS | |
16 | ??? 250 | |
17 | <<< 250 HELP | |
18 | >>> starttls | |
19 | ??? 220 | |
20 | <<< 220 TLS go ahead | |
21 | Attempting to start TLS | |
60d10ce7 | 22 | A TLS fatal alert has been received. |
54c5ebb1 PH |
23 | Failed to start TLS |
24 | End of script | |
dc9c8f8b | 25 | ### No certificate, certificate optional at TLS time, required by ACL |
54c5ebb1 PH |
26 | Connecting to 127.0.0.1 port 1225 ... connected |
27 | ??? 220 | |
28 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 29 | >>> ehlo rhu2.barb |
54c5ebb1 | 30 | ??? 250- |
5c8cda3a | 31 | <<< 250-myhost.test.ex Hello rhu2.barb [127.0.0.1] |
54c5ebb1 PH |
32 | ??? 250- |
33 | <<< 250-SIZE 52428800 | |
34 | ??? 250- | |
5b456975 JH |
35 | <<< 250-8BITMIME |
36 | ??? 250- | |
54c5ebb1 PH |
37 | <<< 250-PIPELINING |
38 | ??? 250- | |
39 | <<< 250-STARTTLS | |
40 | ??? 250 | |
41 | <<< 250 HELP | |
42 | >>> starttls | |
43 | ??? 220 | |
44 | <<< 220 TLS go ahead | |
45 | Attempting to start TLS | |
46 | Succeeded in starting TLS | |
5c8cda3a | 47 | >>> helo rhu2tls.barb |
54c5ebb1 | 48 | ??? 250 |
5c8cda3a | 49 | <<< 250 myhost.test.ex Hello rhu2tls.barb [127.0.0.1] |
54c5ebb1 PH |
50 | >>> mail from:<userx@test.ex> |
51 | ??? 250 | |
52 | <<< 250 OK | |
53 | >>> rcpt to:<userx@test.ex> | |
54 | ??? 550 | |
55 | <<< 550 certificate not verified: peerdn= | |
56 | >>> quit | |
57 | ??? 221 | |
58 | <<< 221 myhost.test.ex closing connection | |
59 | End of script | |
dc9c8f8b | 60 | ### Good certificate, certificate required |
54c5ebb1 | 61 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
62 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem |
63 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
54c5ebb1 PH |
64 | ??? 220 |
65 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 66 | >>> ehlo rhu3.barb |
54c5ebb1 | 67 | ??? 250- |
5c8cda3a | 68 | <<< 250-myhost.test.ex Hello rhu3.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
69 | ??? 250- |
70 | <<< 250-SIZE 52428800 | |
71 | ??? 250- | |
5b456975 JH |
72 | <<< 250-8BITMIME |
73 | ??? 250- | |
54c5ebb1 PH |
74 | <<< 250-PIPELINING |
75 | ??? 250- | |
76 | <<< 250-STARTTLS | |
77 | ??? 250 | |
78 | <<< 250 HELP | |
79 | >>> starttls | |
80 | ??? 220 | |
81 | <<< 220 TLS go ahead | |
82 | Attempting to start TLS | |
83 | Succeeded in starting TLS | |
84 | >>> mail from:<userx@test.ex> | |
85 | ??? 250 | |
86 | <<< 250 OK | |
87 | >>> rcpt to:<userx@test.ex> | |
88 | ??? 250 | |
89 | <<< 250 Accepted | |
90 | >>> quit | |
91 | ??? 221 | |
92 | <<< 221 myhost.test.ex closing connection | |
93 | End of script | |
dc9c8f8b | 94 | ### Good certificate, certificate optional at TLS time, checked by ACL |
54c5ebb1 | 95 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
96 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem |
97 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
54c5ebb1 PH |
98 | ??? 220 |
99 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 100 | >>> ehlo rhu4.barb |
54c5ebb1 | 101 | ??? 250- |
5c8cda3a | 102 | <<< 250-myhost.test.ex Hello rhu4.barb [127.0.0.1] |
54c5ebb1 PH |
103 | ??? 250- |
104 | <<< 250-SIZE 52428800 | |
105 | ??? 250- | |
5b456975 JH |
106 | <<< 250-8BITMIME |
107 | ??? 250- | |
54c5ebb1 PH |
108 | <<< 250-PIPELINING |
109 | ??? 250- | |
110 | <<< 250-STARTTLS | |
111 | ??? 250 | |
112 | <<< 250 HELP | |
113 | >>> starttls | |
114 | ??? 220 | |
115 | <<< 220 TLS go ahead | |
116 | Attempting to start TLS | |
117 | Succeeded in starting TLS | |
118 | >>> mail from:<userx@test.ex> | |
119 | ??? 250 | |
120 | <<< 250 OK | |
121 | >>> rcpt to:<userx@test.ex> | |
122 | ??? 250 | |
123 | <<< 250 Accepted | |
124 | >>> quit | |
125 | ??? 221 | |
126 | <<< 221 myhost.test.ex closing connection | |
127 | End of script | |
dc9c8f8b | 128 | ### Bad certificate, certificate required |
54c5ebb1 | 129 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
130 | Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem |
131 | Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key | |
54c5ebb1 PH |
132 | ??? 220 |
133 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 134 | >>> ehlo rhu5.barb |
54c5ebb1 | 135 | ??? 250- |
5c8cda3a | 136 | <<< 250-myhost.test.ex Hello rhu5.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
137 | ??? 250- |
138 | <<< 250-SIZE 52428800 | |
139 | ??? 250- | |
5b456975 JH |
140 | <<< 250-8BITMIME |
141 | ??? 250- | |
54c5ebb1 PH |
142 | <<< 250-PIPELINING |
143 | ??? 250- | |
144 | <<< 250-STARTTLS | |
145 | ??? 250 | |
146 | <<< 250 HELP | |
147 | >>> starttls | |
148 | ??? 220 | |
149 | <<< 220 TLS go ahead | |
150 | Attempting to start TLS | |
dc9c8f8b JH |
151 | A TLS fatal alert has been received. |
152 | Failed to start TLS | |
54c5ebb1 | 153 | End of script |
dc9c8f8b | 154 | ### Bad certificate, certificate optional at TLS time, reject at ACL time |
54c5ebb1 | 155 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
156 | Certificate file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.chain.pem |
157 | Key file = aux-fixed/exim-ca/example.net/server1.example.net/server1.example.net.unlocked.key | |
54c5ebb1 PH |
158 | ??? 220 |
159 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 160 | >>> ehlo rhu6.barb |
54c5ebb1 | 161 | ??? 250- |
5c8cda3a | 162 | <<< 250-myhost.test.ex Hello rhu6.barb [127.0.0.1] |
54c5ebb1 PH |
163 | ??? 250- |
164 | <<< 250-SIZE 52428800 | |
165 | ??? 250- | |
5b456975 JH |
166 | <<< 250-8BITMIME |
167 | ??? 250- | |
54c5ebb1 PH |
168 | <<< 250-PIPELINING |
169 | ??? 250- | |
170 | <<< 250-STARTTLS | |
171 | ??? 250 | |
172 | <<< 250 HELP | |
173 | >>> starttls | |
174 | ??? 220 | |
175 | <<< 220 TLS go ahead | |
176 | Attempting to start TLS | |
177 | Succeeded in starting TLS | |
178 | >>> mail from:<userx@test.ex> | |
179 | ??? 250 | |
180 | <<< 250 OK | |
181 | >>> rcpt to:<userx@test.ex> | |
54c5ebb1 | 182 | ??? 550 |
dc9c8f8b | 183 | <<< 550 certificate not verified: peerdn= |
54c5ebb1 PH |
184 | >>> quit |
185 | ??? 221 | |
186 | <<< 221 myhost.test.ex closing connection | |
187 | End of script | |
dc9c8f8b | 188 | ### Otherwise good but revoked certificate, certificate required |
54c5ebb1 | 189 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected |
dc9c8f8b JH |
190 | Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem |
191 | Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key | |
54c5ebb1 PH |
192 | ??? 220 |
193 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 194 | >>> ehlo rhu7.barb |
54c5ebb1 | 195 | ??? 250- |
5c8cda3a | 196 | <<< 250-myhost.test.ex Hello rhu7.barb [ip4.ip4.ip4.ip4] |
54c5ebb1 PH |
197 | ??? 250- |
198 | <<< 250-SIZE 52428800 | |
199 | ??? 250- | |
5b456975 JH |
200 | <<< 250-8BITMIME |
201 | ??? 250- | |
54c5ebb1 PH |
202 | <<< 250-PIPELINING |
203 | ??? 250- | |
204 | <<< 250-STARTTLS | |
205 | ??? 250 | |
206 | <<< 250 HELP | |
207 | >>> starttls | |
208 | ??? 220 | |
209 | <<< 220 TLS go ahead | |
210 | Attempting to start TLS | |
211 | Succeeded in starting TLS | |
212 | End of script | |
dc9c8f8b | 213 | ### Revoked certificate, certificate optional at TLS time, reject at ACL time |
54c5ebb1 | 214 | Connecting to 127.0.0.1 port 1225 ... connected |
dc9c8f8b JH |
215 | Certificate file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.chain.pem |
216 | Key file = aux-fixed/exim-ca/example.com/revoked1.example.com/revoked1.example.com.unlocked.key | |
54c5ebb1 PH |
217 | ??? 220 |
218 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
5c8cda3a | 219 | >>> ehlo rhu8.barb |
54c5ebb1 | 220 | ??? 250- |
5c8cda3a | 221 | <<< 250-myhost.test.ex Hello rhu8.barb [127.0.0.1] |
54c5ebb1 PH |
222 | ??? 250- |
223 | <<< 250-SIZE 52428800 | |
224 | ??? 250- | |
5b456975 JH |
225 | <<< 250-8BITMIME |
226 | ??? 250- | |
54c5ebb1 PH |
227 | <<< 250-PIPELINING |
228 | ??? 250- | |
229 | <<< 250-STARTTLS | |
230 | ??? 250 | |
231 | <<< 250 HELP | |
232 | >>> starttls | |
233 | ??? 220 | |
234 | <<< 220 TLS go ahead | |
235 | Attempting to start TLS | |
236 | Succeeded in starting TLS | |
237 | >>> mail from:<userx@test.ex> | |
238 | ??? 250 | |
239 | <<< 250 OK | |
240 | >>> rcpt to:<userx@test.ex> | |
54c5ebb1 | 241 | ??? 550 |
dc9c8f8b JH |
242 | <<< 550 certificate not verified: peerdn=CN=revoked1.example.com |
243 | >>> quit | |
244 | ??? 221 | |
245 | <<< 221 myhost.test.ex closing connection | |
246 | End of script | |
247 | ### Good certificate, certificate required - but nonmatching CRL also present | |
248 | Connecting to ip4.ip4.ip4.ip4 port 1225 ... connected | |
249 | Certificate file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.chain.pem | |
250 | Key file = aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key | |
251 | ??? 220 | |
252 | <<< 220 myhost.test.ex ESMTP Exim x.yz Tue, 2 Mar 1999 09:44:33 +0000 | |
253 | >>> ehlo rhu.barb | |
254 | ??? 250- | |
255 | <<< 250-myhost.test.ex Hello rhu.barb [ip4.ip4.ip4.ip4] | |
256 | ??? 250- | |
257 | <<< 250-SIZE 52428800 | |
258 | ??? 250- | |
259 | <<< 250-8BITMIME | |
260 | ??? 250- | |
261 | <<< 250-PIPELINING | |
262 | ??? 250- | |
263 | <<< 250-STARTTLS | |
264 | ??? 250 | |
265 | <<< 250 HELP | |
266 | >>> starttls | |
267 | ??? 220 | |
268 | <<< 220 TLS go ahead | |
269 | Attempting to start TLS | |
270 | Succeeded in starting TLS | |
271 | >>> mail from:<userx@test.ex> | |
272 | ??? 250 | |
273 | <<< 250 OK | |
274 | >>> rcpt to:<userx@test.ex> | |
275 | ??? 250 | |
276 | <<< 250 Accepted | |
54c5ebb1 PH |
277 | >>> quit |
278 | ??? 221 | |
279 | <<< 221 myhost.test.ex closing connection | |
280 | End of script | |
dc9c8f8b JH |
281 | |
282 | ******** SERVER ******** | |
283 | ### No certificate, certificate required | |
284 | ### No certificate, certificate optional at TLS time, required by ACL | |
285 | ### Good certificate, certificate required | |
286 | ### Good certificate, certificate optional at TLS time, checked by ACL | |
287 | ### Bad certificate, certificate required | |
288 | ### Bad certificate, certificate optional at TLS time, reject at ACL time | |
289 | ### Otherwise good but revoked certificate, certificate required | |
290 | ### Revoked certificate, certificate optional at TLS time, reject at ACL time | |
291 | ### Good certificate, certificate required - but nonmatching CRL also present |