diff options
| author | jmg <jmg@FreeBSD.org> | 2013-10-23 16:55:20 +0000 |
|---|---|---|
| committer | jmg <jmg@FreeBSD.org> | 2013-10-23 16:55:20 +0000 |
| commit | 8f0de933137355baabf4f2a1dad416843e634a41 (patch) | |
| tree | c68858963e0f8834b207b64c2d843a70235a396c /etc/sendmail | |
| parent | 11a75eb16653904a69065dc9eb2c02c32ed449c2 (diff) | |
| download | FreeBSD-src-8f0de933137355baabf4f2a1dad416843e634a41.zip FreeBSD-src-8f0de933137355baabf4f2a1dad416843e634a41.tar.gz | |
MFC r256773:
Enable the automatic creation of a certificate (if one does not exists)
and enable the usage by sendmail if sendmail is enabled.
Reviewed by: gshapiro
Approved by: re (gjb)
Diffstat (limited to 'etc/sendmail')
| -rw-r--r-- | etc/sendmail/freebsd.mc | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/etc/sendmail/freebsd.mc b/etc/sendmail/freebsd.mc index 6d75636..7ab7386 100644 --- a/etc/sendmail/freebsd.mc +++ b/etc/sendmail/freebsd.mc @@ -42,6 +42,11 @@ divert(-1) # /usr/share/sendmail/cf/README or # /usr/src/contrib/sendmail/cf/README # +# +# NOTE: If you enable RunAsUser, make sure that you adjust the permissions +# and owner of the SSL certificates and keys in /etc/mail/certs to be usable +# by that user. +# divert(0) VERSIONID(`$FreeBSD$') @@ -54,6 +59,16 @@ FEATURE(local_lmtp) FEATURE(mailertable, `hash -o /etc/mail/mailertable') FEATURE(virtusertable, `hash -o /etc/mail/virtusertable') +dnl Enable STARTTLS for receiving email. +define(`CERT_DIR', `/etc/mail/certs')dnl +define(`confSERVER_CERT', `CERT_DIR/host.cert')dnl +define(`confSERVER_KEY', `CERT_DIR/host.key')dnl +define(`confCLIENT_CERT', `CERT_DIR/host.cert')dnl +define(`confCLIENT_KEY', `CERT_DIR/host.key')dnl +define(`confCACERT', `CERT_DIR/cacert.pem')dnl +define(`confCACERT_PATH', `CERT_DIR')dnl +define(`confDH_PARAMETERS', `CERT_DIR/dh.param')dnl + dnl Uncomment to allow relaying based on your MX records. dnl NOTE: This can allow sites to use your server as a backup MX without dnl your permission. |
