Re: [exim] AUTH over TLS only

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Warren Howard
Datum:  
CC: exim-users
Betreff: Re: [exim] AUTH over TLS only
On 12/01/2005 05:29 PM, Dennis Davis wrote:
> On Thu, 1 Dec 2005, Warren Howard wrote:
>
>> From: Warren Howard <warren@???>
>> To: exim-users@???
>> Date: Thu, 01 Dec 2005 17:13:46 +0530
>> Subject: [exim] AUTH over TLS only
>>
>> Is there a way in Exim to setup matching functionality to
>> Postfix's "smtpd_tls_auth_only = yes" option? I've read through
>> http://www.exim.org/exim-html-4.50/doc/html/spec_38.html#IX2419
>> and the closest matching option I can find is "hosts_require_tls"
>> which is not what I want.
>
> Use auth_advertise_hosts. From the spec:
>
> If you want to advertise the availability of AUTH only when the
> connection is encrypted using TLS, you can make use of the fact that
> the value of this option is expanded, with a setting like this:
>
>     auth_advertise_hosts = ${if eq{$tls_cipher}{}{}{*}}

>
> If $tls_cipher is empty, the session is not encrypted, and the
> result of the expansion is empty, thus matching no hosts. Otherwise,
> the result of the expansion is *, which matches all hosts.


Lots of immediate, helpful replies!

Thanks everyone,

Warren.