October 2007
Intermediate to advanced
1308 pages
161h 13m
English
Content preview from sendmail, 4th Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Macros for Use with STARTTLS
If you decide to use STARTTLS with sendmail, be aware that a number of related sendmail macros are useful in rule sets and database maps. These are shown in Table 5-6, and described in detail in Chapter 21.
Table 5-6. Macros for use with STARTTLS
|
Macro |
§ |
Description |
|---|---|---|
|
|
${cert_issuer} on page 809 |
Distinguished name of CA that signed the presented cert |
|
|
${cert_md5} on page 809 |
MD5 of certificate |
|
|
${cert_subject} on page 809 |
Distinguished name of certificate |
|
|
${cipher} on page 809 |
Cipher suite used for connection |
|
|
${cipher_bits} on page 810 |
TLS encryption key length |
|
|
${tls_version} on page 847 |
TLS/SSL version |
|
|
${verify} on page 849 |
Result of cert verification |
To illustrate, consider a simple rule set that allows relaying by anyone who presents a cert that can be verified:
LOCAL_RULESETS
SLocal_check_rcpt
R$* $: $&{verify}
ROK $# OKHere, the Local_check_rcpt rule set is used to
check the envelope recipient. If the result of
authentication stored in the ${verify} macro is
OK, the sender
is allowed to relay. Anything other than OK denies
relaying.
More ambitious use of these sendmail macros involves the access database and is covered in the next section.
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.