Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: AIX sendmail and tls
Operating Systems AIX AIX sendmail and tls Post 302943536 by Linusolaradm1 on Sunday 10th of May 2015 12:44:11 AM
Old 05-10-2015
Iuse port 25,i want tls not ssl

---------- Post updated at 11:44 PM ---------- Previous update was at 03:41 PM ----------

One thing i don't understand,here i read

Code:
Macros related to STARTTLS are: 

  •  ${cert_issuer} holds the DN of the CA (the cert issuer).
    • 

  •  ${cert_subject} holds the DN of the cert (called the cert subject).
    • 

  •  ${cn_issuer} holds the CN of the CA (the cert issuer).
    • 

  •  ${cn_subject} holds the CN of the cert (called the cert subject).
    • 

  •  ${tls_version} the TLS/SSL version used for the connection, e.g., TLSv1,     TLSv1/SSLv3, SSLv3, SSLv2.
    • 

  •  ${cipher} the cipher used for the connection, e.g., EDH-DSS-DES-CBC3-SHA,     EDH-RSA-DES-CBC-SHA, DES-CBC-MD5, DES-CBC3-SHA.
    •

My question is,how to make those macro on .mc file?
I have tried those syntax,but doesn't work

Code:
 define(`macroTLS_VERSION',`TLSv1')dnl

and
Code:
 define(`confTLS_VERSION',`TLSv1')dnl

and
Code:
 define(`TLS_VERSION',`TLSv1')dnl

How to pass tlsv1 to sendmail?
Thanks
 

10 More Discussions You Might Find Interesting

1. AIX

How to configure sendmail for AIX 5.3

Hello All, I am very new to this sendmail thing. I need to set up AIX servers with sendmail service to get emails in my corporate email address. All I am asked to do is use SMTP gateways (already in place) for using sendmail. thanks in advance (0 Replies)
Discussion started by: solaix14
0 Replies

2. UNIX for Dummies Questions & Answers

Implementing TLS with Sendmail and having problem with cert request

Hi. One of my company's customers requires mails to be sent to them to use TLS. Thanks to some good documentation on the web, I've got this mostly figured out, but now I'm stuck at generating the CSR. My company's mail domain is sg.bunny.com (not real address, obviously), but the email gateway... (0 Replies)
Discussion started by: pierreery
0 Replies

3. AIX

AIX sendmail configuration

I want to configure sendmail on AIX 4 and 5 to send emails to a windows SMTP proxy server for distribution. Mail would be going from AIX to Windows but any return emails would be sent not AIX but to a default Windows return address. What variables in the AIX sendmail.cf file would need to be... (1 Reply)
Discussion started by: rahe
1 Replies

4. AIX

Problems with sendmail on AIX

hi, i got this error, i have no idea where to start.. anyone please??? Warning: .cf file is out of date: sendmail AIX5.3/8.13.4 supports version 10, .c f file is version 9 WARNING: local host name (BAANPRO) is not qualified; see cf/README: WHO AM I? Running /var/spool/mqueue/o3CBj3np1138768... (3 Replies)
Discussion started by: fdeivis
3 Replies

5. AIX

sendmail on AIX

Hi, Is sendmail required to read local mail for root user on AIX? I shutdown sendmail daemon and sent a test mail to root and I got it. I don't know if I'm missing something here. Thanks regards Israel. (1 Reply)
Discussion started by: iga3725
1 Replies

6. HP-UX

Sendmail TLS and Certificate?

We are running HP-UX 11v1 and are about to upgrade sendmail to 8.13.3 to allow support for TLS. Enabling TLS seems pretty straightforward, but I'm wondering if an SSL certificate is required for this. Our MS Exchange server does use a certificate. Do I need to arrange for a public certificate to... (3 Replies)
Discussion started by: jduehmig
3 Replies

7. UNIX for Dummies Questions & Answers

Problems with Sendmail AUTH and TLS

Greetings. I desperately need help to get my sendmail configuration working again. I followed this guide: Unmemorable Memories » Blog Archive » Enabling SMTP-AUTH for Sendmail on Debian Linux 3.1 to enable TLS and AUTH in sendmail and now I get an error I just cannot find any information... (1 Reply)
Discussion started by: Mr.Glaurung
1 Replies

8. AIX

AIX LDAP client authenticate against Linux Openldap server over TLS/SSL

Hi folks, How can i configure an AIX LDAP client to authenticate against an Linux Openldap server over TLS/SSL? It works like a charm without TLS/SSL. i would like to have SSL encrypted communication for ldap (secldapclntd) and ldapsearch etc. while accepting every kind of certificate/CA.... (6 Replies)
Discussion started by: paco699
6 Replies

9. Solaris

How to configure CUPS on Solaris 11.3 - TLS and no TLS?

We are implementing CUPS on a new Solaris 11.3 system. The same system will run an application where users can print to networked printers inside our organisation, or to a printer outside of our organisation over the internet. For users printing to internal network printers, no encryption is... (0 Replies)
Discussion started by: SallyB
0 Replies

10. AIX

Unable to establish connection over TLS 1.2 on AIX 7.1/7.2

Hello Team, I would need your help to enable communication over TLS1.2 on AIX 7.1 or 7.2 with IBM JDK 1.8 latest update. By default, the request is trying to establish a connection over TLSv1 even though TLS 1.2 is explicitly enabled on server as well as on Java 8. The openssl command throws... (4 Replies)
Discussion started by: Naina2019
4 Replies

LEARN ABOUT CENTOS

ssl_cipher_get_version

SSL_CIPHER_get_name(3)						      OpenSSL						    SSL_CIPHER_get_name(3)

NAME

       SSL_CIPHER_get_name, SSL_CIPHER_get_bits, SSL_CIPHER_get_version, SSL_CIPHER_description - get SSL_CIPHER properties

SYNOPSIS

	#include <openssl/ssl.h>

	const char *SSL_CIPHER_get_name(const SSL_CIPHER *cipher);
	int SSL_CIPHER_get_bits(const SSL_CIPHER *cipher, int *alg_bits);
	char *SSL_CIPHER_get_version(const SSL_CIPHER *cipher);
	char *SSL_CIPHER_description(const SSL_CIPHER *cipher, char *buf, int size);

DESCRIPTION

       SSL_CIPHER_get_name() returns a pointer to the name of cipher. If the argument is the NULL pointer, a pointer to the constant value "NONE"
       is returned.

       SSL_CIPHER_get_bits() returns the number of secret bits used for cipher. If alg_bits is not NULL, it contains the number of bits processed
       by the chosen algorithm. If cipher is NULL, 0 is returned.

       SSL_CIPHER_get_version() returns the protocol version for cipher, currently "SSLv2", "SSLv3", or "TLSv1". If cipher is NULL, "(NONE)" is
       returned.

       SSL_CIPHER_description() returns a textual description of the cipher used into the buffer buf of length len provided. len must be at least
       128 bytes, otherwise a pointer to the string "Buffer too small" is returned. If buf is NULL, a buffer of 128 bytes is allocated using
       OPENSSL_malloc(). If the allocation fails, a pointer to the string "OPENSSL_malloc Error" is returned.

NOTES

       The number of bits processed can be different from the secret bits. An export cipher like e.g. EXP-RC4-MD5 has only 40 secret bits. The
       algorithm does use the full 128 bits (which would be returned for alg_bits), of which however 88bits are fixed. The search space is hence
       only 40 bits.

       The string returned by SSL_CIPHER_description() in case of success consists of cleartext information separated by one or more blanks in the
       following sequence:

       <ciphername>
	   Textual representation of the cipher name.

       <protocol version>
	   Protocol version: SSLv2, SSLv3. The TLSv1 ciphers are flagged with SSLv3.

       Kx=<key exchange>
	   Key exchange method: RSA (for export ciphers as RSA(512) or RSA(1024)), DH (for export ciphers as DH(512) or DH(1024)), DH/RSA, DH/DSS,
	   Fortezza.

       Au=<authentication>
	   Authentication method: RSA, DSS, DH, None. None is the representation of anonymous ciphers.

       Enc=<symmetric encryption method>
	   Encryption method with number of secret bits: DES(40), DES(56), 3DES(168), RC4(40), RC4(56), RC4(64), RC4(128), RC2(40), RC2(56),
	   RC2(128), IDEA(128), Fortezza, None.

       Mac=<message authentication code>
	   Message digest: MD5, SHA1.

       <export flag>
	   If the cipher is flagged exportable with respect to old US crypto regulations, the word "export" is printed.

EXAMPLES

       Some examples for the output of SSL_CIPHER_description():

	EDH-RSA-DES-CBC3-SHA	SSLv3 Kx=DH	  Au=RSA  Enc=3DES(168) Mac=SHA1
	EDH-DSS-DES-CBC3-SHA	SSLv3 Kx=DH	  Au=DSS  Enc=3DES(168) Mac=SHA1
	RC4-MD5 		SSLv3 Kx=RSA	  Au=RSA  Enc=RC4(128)	Mac=MD5
	EXP-RC4-MD5		SSLv3 Kx=RSA(512) Au=RSA  Enc=RC4(40)	Mac=MD5  export

BUGS

       If SSL_CIPHER_description() is called with cipher being NULL, the library crashes.

       If SSL_CIPHER_description() cannot handle a built-in cipher, the according description of the cipher property is unknown. This case should
       not occur.

RETURN VALUES

       See DESCRIPTION

SEE ALSO

       ssl(3), SSL_get_current_cipher(3), SSL_get_ciphers(3), ciphers(1)

1.0.1e								    2013-02-11						    SSL_CIPHER_get_name(3)
All times are GMT -4. The time now is 08:05 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy