$={tls} and $={Tls}
Possible values for TLS policy in access map V8.12 and later
The tls_server
rule
set is called at the start of any connection in
which the local sendmail would
normally issue the STARTTLS SMTP command. The
tls_client
rule
set is called at the start of any inbound connection
in which the STARTTLS SMTP command was offered. Both
rule sets look up information in the
access database. (See The access database with tls_server and
tls_client
on page 214 for a full description of this
process.)
The tls_server
rule
set prefixes its lookups with a literal TLS_Srv
: expression, and
the tls_client
rule set prefixes its lookups with a literal
TLS_Clt
:
expression. Among the possible returned values from
the lookup can be two special keywords:
TLS_Srv:hostA.domain VERIFY
TLS_Clt:hostB.domain ENCR:bits
These two special keywords (VERIFY and ENCR) are not
defined inside sendmail.
Instead, they are defined as values given to the
class $={tls}
(prior to V8.13) or $={Tls}
(V8.13 and later).
This class macro is properly defined in your default configuration file and should never need adjustment.
Get sendmail, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.