Mercurial > masqmail
comparison examples/openssl.route @ 223:9814e75de61c
updated docs to STARTTLS wrappers
| author | meillo@marmaro.de |
|---|---|
| date | Fri, 23 Jul 2010 11:18:20 +0200 |
| parents | e96a9fee9423 |
| children | e230bcd0f1c6 |
comparison
equal
deleted
inserted
replaced
| 222:8cddc65765bd | 223:9814e75de61c |
|---|---|
| 4 | 4 |
| 5 protocol = "smtp" | 5 protocol = "smtp" |
| 6 | 6 |
| 7 # encryption is done by communicating through openssl | 7 # encryption is done by communicating through openssl |
| 8 | 8 |
| 9 wrapper="/usr/bin/openssl s_client -quiet -connect mail.gmx.net:465 2>/dev/null" | 9 # Today usually STARTTLS (RFC-3207) is used: |
| 10 # you may want to tell openssl where the certificates are stored | 10 # don't forget the instant_helo, otherwise it won't work, because the wrapper eats the 220 greeting |
| 11 #wrapper="/usr/bin/openssl s_client -quiet -CApath /etc/ssl -connect mail.gmx.net:465 2>/dev/null" | 11 instant_helo=true |
| 12 wrapper="/usr/bin/openssl s_client -quiet -starttls smtp -connect mail.gmx.net:25 2>/dev/null" | |
| 13 | |
| 14 # The old way is SMTP over SSL; the IETF had marked it obsolete: | |
| 15 # don't use instant_helo here | |
| 16 #wrapper="/usr/bin/openssl s_client -quiet -connect mail.gmx.net:465 2>/dev/null" | |
| 17 | |
| 12 | 18 |
| 13 # which addresses are allowed through this route? | 19 # which addresses are allowed through this route? |
| 14 allowed_return_paths = "*@gmx.de;*@gmx.net" | 20 allowed_return_paths = "*@gmx.de;*@gmx.net" |
| 15 | 21 |
| 16 # the authentication method | 22 # the authentication method |