[exim-dev] [Bug 1602] New: DANE TLSA lookup uses wrong port for verify = recipient/callout + Fix

Heiko Schlittermann Sat, 21 Mar 2015 10:59:25 -0700

------- You are receiving this mail because: -------
You are on the CC list for the bug.


http://bugs.exim.org/show_bug.cgi?id=1602
           Summary: DANE TLSA lookup uses wrong port for verify =
                    recipient/callout + Fix
           Product: Exim
           Version: N/A
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Keywords: work:tiny
          Severity: bug
          Priority: medium
         Component: ACLs
        AssignedTo: [email protected]
        ReportedBy: [email protected]
                CC: [email protected]


Created an attachment (id=798)
 --> (http://bugs.exim.org/attachment.cgi?id=798)
fix for the above problem

Hi,

when using recipient verification with callouts, the TLSA lookup uses -1
as the port number. It seems, that the hostlist, provided by the
dnslookup router, does not contain a portnumber yet.

I'm using a minimal configuration for testing:

   ---------------
    tls_certificate = /etc/ssl/certs/hs12.schlittermann.de-crt.pem
    tls_privatekey = /etc/ssl/private/hs12.schlittermann.de-key.pem

    acl_smtp_rcpt = accept verify = recipient/callout=use_sender,defer_ok

    begin routers

        dnslookup:
            driver = dnslookup
            transport = remote_smtp
            dnssec_request_domains = *

    begin transports

        remote_smtp:
            driver = smtp
            hosts_require_dane = *
            hosts_verify_avoid_tls = 

-- 
Heiko


-- 
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email

-- 
## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim 
details at http://www.exim.org/ ##

[exim-dev] [Bug 1602] New: DANE TLSA lookup uses wrong port for verify = recipient/callout + Fix

Reply via email to