------- You are receiving this mail because: -------
You are on the CC list for the bug.
http://bugs.exim.org/show_bug.cgi?id=1371
Wolfgang Breyha <wbreyha@???> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #643 is|0 |1
obsolete| |
--- Comment #1 from Wolfgang Breyha <wbreyha@???> 2013-10-03 13:05:55 ---
Created an attachment (id=656)
--> (
http://bugs.exim.org/attachment.cgi?id=656)
implements tls_(try_)verify_hosts for smtp_transport for 4.82_RC1
I reworked my patch. One big concern seemed that it changed the way the
tls_verify_certificates option worked.
What I did now is:
If only
tls_verify_certificates = <certfile>
is defined everything is as before. Verification is enforced for all hosts.
I still add two new options for the smtp transport:
tls_try_verify_hosts = <hostlist>
tls_verify_hosts = <hostlist>
If one or both of them is set tls_verify_certificates only sets the <certfile>
and the checks are done according the the hostlists defined.
tls_verify_hosts is the stronger one in case the lists overlap.
Patch is already against 4.82_RC1.
--
Configure bugmail:
http://bugs.exim.org/userprefs.cgi?tab=email
