Mercurial > masqmail
diff examples/openssl.route @ 223:9814e75de61c
updated docs to STARTTLS wrappers
| author | meillo@marmaro.de |
|---|---|
| date | Fri, 23 Jul 2010 11:18:20 +0200 |
| parents | e96a9fee9423 |
| children | e230bcd0f1c6 |
line wrap: on
line diff
--- a/examples/openssl.route Fri Jul 23 10:57:53 2010 +0200 +++ b/examples/openssl.route Fri Jul 23 11:18:20 2010 +0200 @@ -6,9 +6,15 @@ # encryption is done by communicating through openssl -wrapper="/usr/bin/openssl s_client -quiet -connect mail.gmx.net:465 2>/dev/null" -# you may want to tell openssl where the certificates are stored -#wrapper="/usr/bin/openssl s_client -quiet -CApath /etc/ssl -connect mail.gmx.net:465 2>/dev/null" +# Today usually STARTTLS (RFC-3207) is used: +# don't forget the instant_helo, otherwise it won't work, because the wrapper eats the 220 greeting +instant_helo=true +wrapper="/usr/bin/openssl s_client -quiet -starttls smtp -connect mail.gmx.net:25 2>/dev/null" + +# The old way is SMTP over SSL; the IETF had marked it obsolete: +# don't use instant_helo here +#wrapper="/usr/bin/openssl s_client -quiet -connect mail.gmx.net:465 2>/dev/null" + # which addresses are allowed through this route? allowed_return_paths = "*@gmx.de;*@gmx.net"