masqmail

view examples/openssl.route @ 331:e507c854a63e

Security fix! Correct handling of seteuid() return value See Debian bug #638002, reported by John Lightsey. When possible the (already available) set_euidgid() function is used. Additionally, it is unnecessary to change the identity when writing into an already open file descriptor. This should fix the problem.
author markus schnalke <meillo@marmaro.de>
date Sat, 27 Aug 2011 16:19:07 +0200
parents e230bcd0f1c6
children 48ff59cf0b34
line source
1 # openssl.route
2 # by Philipp Berndt
5 # encryption is done by communicating through openssl
7 # Today usually STARTTLS (RFC-3207) is used:
8 # don't forget the instant_helo, otherwise it won't work, because the wrapper eats the 220 greeting
9 instant_helo=true
10 wrapper="/usr/bin/openssl s_client -quiet -starttls smtp -connect mail.gmx.net:25 2>/dev/null"
12 # The old way is SMTP over SSL; the IETF had marked it obsolete:
13 # don't use instant_helo here
14 #wrapper="/usr/bin/openssl s_client -quiet -connect mail.gmx.net:465 2>/dev/null"
17 # which sender addresses are allowed for this route?
18 allowed_senders = "*@gmx.de;*@gmx.net"
20 # the authentication method
21 #auth_name = "cram-md5"
22 auth_name = "login"
24 # user name und password
25 auth_login = "UID_OR_EMAIL_ADDRESS"
26 auth_secret = "YOUR_PASSWORD"