------- You are receiving this mail because: -------
You are on the CC list for the bug.
http://bugs.exim.org/show_bug.cgi?id=1602
Summary: DANE TLSA lookup uses wrong port for verify =
recipient/callout + Fix
Product: Exim
Version: N/A
Platform: Other
OS/Version: Linux
Status: NEW
Keywords: work:tiny
Severity: bug
Priority: medium
Component: ACLs
AssignedTo: jgh146exb@???
ReportedBy: hs@???
CC: exim-dev@???
Created an attachment (id=798)
--> (
http://bugs.exim.org/attachment.cgi?id=798)
fix for the above problem
Hi,
when using recipient verification with callouts, the TLSA lookup uses -1
as the port number. It seems, that the hostlist, provided by the
dnslookup router, does not contain a portnumber yet.
I'm using a minimal configuration for testing:
---------------
tls_certificate = /etc/ssl/certs/hs12.schlittermann.de-crt.pem
tls_privatekey = /etc/ssl/private/hs12.schlittermann.de-key.pem
acl_smtp_rcpt = accept verify = recipient/callout=use_sender,defer_ok
begin routers
dnslookup:
driver = dnslookup
transport = remote_smtp
dnssec_request_domains = *
begin transports
remote_smtp:
driver = smtp
hosts_require_dane = *
hosts_verify_avoid_tls =
--
Heiko
--
Configure bugmail:
http://bugs.exim.org/userprefs.cgi?tab=email
