projects / mirror / dsa-puppet.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2298505)
Make client verify server cert as well
authorStephen Gran <steve@lobefin.net>
Sun, 5 Apr 2009 12:34:59 +0000 (13:34 +0100)
committerStephen Gran <steve@lobefin.net>
Sun, 5 Apr 2009 12:35:17 +0000 (13:35 +0100)
Signed-off-by: Stephen Gran <steve@lobefin.net>
modules/exim/files/common/exim4.conf patch | blob | history

diff --git a/modules/exim/files/common/exim4.conf b/modules/exim/files/common/exim4.conf
index f9e3ad5..b953e51 100644 (file)
--- a/modules/exim/files/common/exim4.conf
+++ b/modules/exim/files/common/exim4.conf
@@ -1132,6 +1132,8 @@ remote_smtp:
   tls_tempfail_tryclear = true
   tls_certificate = /etc/exim4/ssl/thishost.crt
   tls_privatekey = /etc/exim4/ssl/thishost.key
+  tls_verify_certificates = /etc/exim4/ssl/ca.crt
+  tls_crl = /etc/exim4/ssl/ca.crl
 .endif
 
 # Send the message to procmail
Unnamed repository; edit this file 'description' to name the repository.