CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2009/01/29 07:25:55
Modified files:
usr.sbin/smtpd : mta.c smtpd.h ssl.c
Log message:
initial starttls support in mta, this allows:
accept for domain "openbsd.org" relay via tls "mx.example.org"
to ensure the relaying of mail for [email protected] will happen through
a secure tls (STARTTLS) session. failure to establish a tls session will be
considered as a permanent failure. As a side effect:
accept for domain "openbsd.org" relay via ssl "mx.example.org"
can now work as well and ensure that the relaying happens through ssmtp OR
tls, but never through an unsafe channel. no need to specify a port, they
are automatically detected if not specified.
still a work in progress, don't expect that it will work flawlessly.
