summaryrefslogtreecommitdiff
path: root/conf.d
diff options
context:
space:
mode:
authorSystem administrator2019-09-28 12:41:18 +0200
committerSystem administrator2019-09-28 12:41:18 +0200
commitb9565c95598563917e3c0d365ac0448515fc98c3 (patch)
tree491831fd866d0368d1513de2c4291f8e8dace11d /conf.d
parentd62bb7a387ed5b2c6c4d875fade141032b77b851 (diff)
downloadexim-b9565c95598563917e3c0d365ac0448515fc98c3.tar.gz
acl: re-enable dkim signature check for relayed messages
Diffstat (limited to 'conf.d')
-rw-r--r--conf.d/020_acl.conf6
1 files changed, 0 insertions, 6 deletions
diff --git a/conf.d/020_acl.conf b/conf.d/020_acl.conf
index c0ec4f3..59417b3 100644
--- a/conf.d/020_acl.conf
+++ b/conf.d/020_acl.conf
@@ -77,10 +77,7 @@ acl_mua_data:
77############ 77############
78 78
79acl_mta_connect: 79acl_mta_connect:
80 # Accept all messages from trusted hosts and relays.
81 # Also disable DKIM signature check as mailing list servers may alter messages.
82 accept hosts = +trusted_relay_hosts 80 accept hosts = +trusted_relay_hosts
83 control = dkim_disable_verify
84 81
85 # Deny messages from hosts known to be bad. 82 # Deny messages from hosts known to be bad.
86 drop dnslists = sbl-xbl.spamhaus.org : bl.spamcop.net 83 drop dnslists = sbl-xbl.spamhaus.org : bl.spamcop.net
@@ -93,10 +90,7 @@ acl_mta_mail:
93 require acl = acl_check_mail_introduction 90 require acl = acl_check_mail_introduction
94 message = Courtesy protocol violation: $acl_m_msg 91 message = Courtesy protocol violation: $acl_m_msg
95 92
96 # Accept all messages from trusted hosts and relays.
97 # Also disable DKIM signature check as mailing list servers may alter messages.
98 accept hosts = +trusted_relay_hosts 93 accept hosts = +trusted_relay_hosts
99 control = dkim_disable_verify
100 94
101 # Accept if the host is an authorized sender according to the SPF policy for the domain (SPF pass). 95 # Accept if the host is an authorized sender according to the SPF policy for the domain (SPF pass).
102 # TODO: switch to builtin exim SPF support 96 # TODO: switch to builtin exim SPF support