test/confs/4065

   1 # test config 4065
   2 # Early-pipe, AUTH, GnuTLS, tls-on-connect
   3
   4 keep_environment = PATH
   5 exim_path = EXIM_PATH
   6 host_lookup_order = bydns
   7 spool_directory = DIR/spool
   8
   9 .ifdef SERVER
  10 log_file_path = DIR/spool/log/SERVER%slog
  11 .else
  12 log_file_path = DIR/spool/log/%slog
  13 .endif
  14
  15 gecos_pattern = ""
  16 gecos_name = CALLER_NAME
  17 dns_cname_loops = 9
  18 chunking_advertise_hosts =
  19 tls_on_connect_ports = PORT_D
  20 tls_advertise_hosts = *
  21 tls_certificate = ${if eq {SERVER}{server}{DIR/aux-fixed/cert1}fail}
  22
  23 # Avoid ECDHE key-exchange so that we can wireshark-decode
  24 .ifdef _HAVE_GNUTLS
  25 tls_require_ciphers = NORMAL:-KX-ALL:+RSA
  26 .endif
  27
  28 pipelining_connect_advertise_hosts = *
  29 auth_advertise_hosts = *
  30
  31 log_selector = +received_recipients +pipelining
  32 queue_only
  33
  34 acl_smtp_rcpt = accept
  35
  36 #
  37 begin routers
  38
  39 server:
  40   driver =      redirect
  41   condition =   ${if eq {SERVER}{server}}
  42   data =        :blackhole:
  43
  44 client:
  45   driver =      manualroute
  46   route_data =  127.0.0.1
  47   self =        send
  48   transport =   smtp
  49
  50 #
  51 begin transports
  52
  53 smtp:
  54   driver =              smtp
  55   hosts_pipe_connect =  *
  56   protocol =            smtps
  57   port =                PORT_D
  58   tls_verify_hosts =
  59   tls_try_verify_hosts =
  60   hosts_require_auth =  *
  61
  62 #
  63 begin authenticators
  64
  65 plain:
  66   driver = plaintext
  67   public_name = PLAIN
  68
  69   server_condition = "\
  70     ${if and {{eq{$auth2}{userx}}{eq{$auth3}{secret}}}{yes}{no}}"
  71   server_set_id = $auth2
  72
  73   client_send = ^userx^secret
  74