Commit | Line | Data |
---|---|---|
6a11a9e6 JH |
1 | # Exim test configuration 4500 |
2 | ||
3 | SERVER= | |
4 | ||
d4dc049f JH |
5 | .include DIR/aux-var/std_conf_prefix |
6 | ||
6a11a9e6 | 7 | primary_hostname = myhost.test.ex |
6a11a9e6 JH |
8 | |
9 | # ----- Main settings ----- | |
10 | ||
11 | acl_smtp_rcpt = accept | |
a79d8834 | 12 | acl_smtp_dkim = check_dkim |
e34f8ca2 | 13 | acl_smtp_data = check_data |
6a11a9e6 | 14 | |
2c47372f | 15 | log_selector = +dkim_verbose |
6ce1ece9 | 16 | dkim_verify_hashes = sha256 : sha512 : sha1 |
be24b950 JH |
17 | .ifdef MSIZE |
18 | dkim_verify_min_keysizes = MSIZE | |
19 | .endif | |
2c47372f | 20 | |
6a11a9e6 JH |
21 | queue_only |
22 | queue_run_in_order | |
23 | ||
a79d8834 JH |
24 | |
25 | begin acl | |
26 | ||
27 | check_dkim: | |
ce93c6d8 JH |
28 | .ifdef BAD |
29 | warn logwrite = ${lookup dnsdb{defer_never,txt=_adsp._domainkey.$dkim_cur_signer}{$value}{unknown}} | |
30 | .endif | |
a79d8834 JH |
31 | .ifdef OPTION |
32 | warn condition = ${if eq {$dkim_algo}{rsa-sha1}} | |
33 | condition = ${if eq {$dkim_verify_status}{pass}} | |
34 | logwrite = NOTE: forcing dkim verify fail (was pass) | |
35 | set dkim_verify_status = fail | |
36 | set dkim_verify_reason = hash too weak | |
37 | .endif | |
2c47372f | 38 | warn |
a79d8834 | 39 | logwrite = signer: $dkim_cur_signer bits: $dkim_key_length |
2c47372f JH |
40 | .ifndef STRICT |
41 | accept | |
42 | .endif | |
a79d8834 | 43 | |
e34f8ca2 JH |
44 | check_data: |
45 | accept logwrite = ${authresults {$primary_hostname}} | |
46 | ||
6a11a9e6 | 47 | # End |