From 01a4a5c5cbaa40ca618d3e233991ce183b551477 Mon Sep 17 00:00:00 2001 From: Jeremy Harris Date: Sat, 22 Nov 2014 19:16:19 +0000 Subject: Move certificate name checking to mainline, default enabled This is an exim client checking a server certificate. --- test/confs/5658 | 4 ++++ 1 file changed, 4 insertions(+) (limited to 'test/confs/5658') diff --git a/test/confs/5658 b/test/confs/5658 index 7ab2de68f..de486e083 100644 --- a/test/confs/5658 +++ b/test/confs/5658 @@ -95,6 +95,7 @@ send_to_server1: hosts = HOSTIPV4 port = PORT_D tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem + tls_verify_cert_hostnames = hosts_require_tls = * hosts_request_ocsp = : headers_add = X-TLS-out: OCSP status $tls_out_ocsp \ @@ -108,6 +109,7 @@ send_to_server2: hosts = HOSTIPV4 port = PORT_D tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem + tls_verify_cert_hostnames = hosts_require_tls = * # note no ocsp mention here headers_add = X-TLS-out: OCSP status $tls_out_ocsp \ @@ -123,6 +125,7 @@ send_to_server3: helo_data = helo.data.changed #tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem + tls_verify_cert_hostnames = hosts_require_tls = * hosts_require_ocsp = * headers_add = X-TLS-out: OCSP status $tls_out_ocsp \ @@ -138,6 +141,7 @@ send_to_server4: helo_data = helo.data.changed #tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/server1.example.com/ca_chain.pem tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem + tls_verify_cert_hostnames = protocol = smtps hosts_require_tls = * hosts_require_ocsp = * -- cgit v1.2.3