Mailing List Archive

From:: Philipp <philipp+openbsd@bureaucracy.de>
Subject:: smtpd document relay ca option
To:: tech@openbsd.org
Date:: Thu, 25 Jul 2024 13:47:31 +0200

Download raw body.

Thread

2024-07-25 11:47 Philipp:
smtpd document relay ca option
- 2024-07-25 14:01 Jason McIntyre:
  smtpd document relay ca option
- - 2024-07-25 17:42 Omar Polo:
    smtpd document relay ca option

Hi

I have noticed that the ca option for relay is not documented in the
action section of smtpd.conf(5). I have a patch for this.

Philipp

diff --git a/usr.sbin/smtpd/smtpd.conf.5 b/usr.sbin/smtpd/smtpd.conf.5
index 03f094c010b..4cfe1a0c34a 100644
--- a/usr.sbin/smtpd/smtpd.conf.5
+++ b/usr.sbin/smtpd/smtpd.conf.5
@@ -295,6 +295,14 @@ use the certificate associated with
 .Ic pki
 directive)
 to prove the client's identity to the remote mail server.
+.It Cm ca Ar caname
+For secure connections,
+use the certificate authority associated with
+.Ar caname
+(declared in a
+.Ic ca
+directive)
+to validate the server's identity.
 .It Cm srs
 When relaying a mail resulting from a forward,
 use the Sender Rewriting Scheme to rewrite sender address.

2024-07-25 11:47 Philipp:
smtpd document relay ca option
- 2024-07-25 14:01 Jason McIntyre:
  smtpd document relay ca option
- - 2024-07-25 17:42 Omar Polo:
    smtpd document relay ca option