Issues building OpenSMTPD on MS-Windows (x86_x64) with Cygwin

[drav...@dravionsoftware.com]

For the sake of better readability, i started a new topic (i hope you
dont mind) ;-)

Ok, as described in my Hello post,  i had a few problems, running the
./configure script, which resulted in the error message:

"configure: error: *** compiler cannot create working executables"

After some trial and error, i found out, it has indeed something to do,
with the way i was trying to include LibreSSL, but finally i was able to
find a set of switches ./configure can work with.

Which is: LDFLAGS="-L/opt/libressl/lib" CFLAGS="-I/opt/libressl/include"
./configure --with-gnu-ld

But now the Problems are shifted to another sport (see below)

Dravion@CAMELOT ~/OpenSMTPD
$ make
make  all-recursive
make[1]: Entering directory '/home/Dravion/OpenSMTPD'
Making all in openbsd-compat
make[2]: Entering directory '/home/Dravion/OpenSMTPD/openbsd-compat'
gcc -DHAVE_CONFIG_H -I. -I..  -I.. -I../usr.sbin/smtpd
-I../openbsd-compat -I../openbsd-compat/libasr -I../openbsd-compat/err_h
-I/usr/include   -I/opt/libressl/include  -DDLL_EXPORT -DPIC -Wall
-Wpointer-arith -Wuninitialized -Wsign-compare -Wformat-security
-Wsizeof-pointer-memaccess -Wno-pointer-sign -Wno-unused-result
-fno-strict-aliasing -fno-builtin-memset  -c -o libasr/asr_debug.o
libasr/asr_debug.c
libasr/asr_debug.c: In function ‘_asr_dump_config’:
libasr/asr_debug.c:292:11: error: ‘RES_USE_DNSSEC’ undeclared (first use
in this function); did you mean ‘RES_USE_DNAME’?
  292 |  PRINTOPT(RES_USE_DNSSEC, "USE_DNSSEC");
  |   ^~
libasr/asr_debug.c:281:36: note: in definition of macro ‘PRINTOPT’
  281 | #define PRINTOPT(flag, n) if (o & (flag)) { fprintf(f, " " n); o
&= ~(flag); }
  |    ^~~~
libasr/asr_debug.c:292:11: note: each undeclared identifier is reported
only once for each function it appears in
  292 |  PRINTOPT(RES_USE_DNSSEC, "USE_DNSSEC");
  |   ^~
libasr/asr_debug.c:281:36: note: in definition of macro ‘PRINTOPT’
  281 | #define PRINTOPT(flag, n) if (o & (flag)) { fprintf(f, " " n); o
&= ~(flag); }
  |    ^~~~
make[2]: *** [Makefile:550: libasr/asr_debug.o] Error 1
make[2]: Leaving directory '/home/Dravion/OpenSMTPD/openbsd-compat'
make[1]: *** [Makefile:419: all-recursive] Error 1
make[1]: Leaving directory '/home/Dravion/OpenSMTPD'
make: *** [Makefile:351: all] Error 2


Did some one came across the same error in a similar or the same situation?

Greetings,
Dravion

Relaying based on cert or auth

[Sean Kamath]

I was reading an old, old thread (*) and am trying to relay based on a cert.

I have a mail server for imap/smtp.  I have a number of machines on an internal 
network.  I cannot talk to the mail server on port 25 from where the internal 
network is (thanks to my ISP).

I was hoping to relay over the submission port, using a client cert from the 
internal machines.  But I’m not sure how to accept either an auth 
authentication or by providing a cert.  Should I bite the bullet and add some 
random other port (2525 or whatever) that only accepts connections with a TLS 
client cert?

Also, I assume the pki cert file is used both when acting as a server and when 
acting as a client?  Is this correct?   I.e., if I set up listening on a port 
with tsl-require that the client machine will send it’s certificate from the 
'pki “name” cert ’ line?

Sean

* 
https://misc.opensmtpd.narkive.com/2puCGKoq/client-certificate-verification-prompt