diff options
| author | Martin Natano <natano@cvs.openbsd.org> | 2017-07-11 06:08:41 +0000 |
|---|---|---|
| committer | Martin Natano <natano@cvs.openbsd.org> | 2017-07-11 06:08:41 +0000 |
| commit | 9acd92d1f5a125fceffd8c538b95d2053adbccad (patch) | |
| tree | 4e5601c96c2e1fdcc592bdc8cc712ff3798f9fe4 /usr.sbin/smtpd/parse.y | |
| parent | 5bab984629e74f98cd53e358926b64b6c18a6057 (diff) | |
Remove "listen secure" syntax from smtpd.conf. It's broken since a couple of
months and noone complained.
Users should replace existing "listen secure" directives with two separate
"tls" and "smtps" listeners. i.e. a line like
listen on $iface tls pki $pki
has to be replaced with
listen on $iface tls pki $pki
listen on $iface smtps pki $pki
Relaying syntax is not affected by this change.
suggested by eric
ok gilles
Diffstat (limited to 'usr.sbin/smtpd/parse.y')
| -rw-r--r-- | usr.sbin/smtpd/parse.y | 13 |
1 files changed, 2 insertions, 11 deletions
diff --git a/usr.sbin/smtpd/parse.y b/usr.sbin/smtpd/parse.y index 20736f65f72..b522d402460 100644 --- a/usr.sbin/smtpd/parse.y +++ b/usr.sbin/smtpd/parse.y @@ -1,4 +1,4 @@ -/* $OpenBSD: parse.y,v 1.196 2017/05/22 13:43:15 gilles Exp $ */ +/* $OpenBSD: parse.y,v 1.197 2017/07/11 06:08:40 natano Exp $ */ /* * Copyright (c) 2008 Gilles Chehade <gilles@poolp.org> @@ -169,7 +169,7 @@ typedef struct { %} %token AS QUEUE COMPRESSION ENCRYPTION MAXMESSAGESIZE MAXMTADEFERRED LISTEN ON ANY PORT EXPIRE -%token TABLE SECURE SMTPS CERTIFICATE DOMAIN BOUNCEWARN LIMIT INET4 INET6 NODSN SESSION +%token TABLE SMTPS CERTIFICATE DOMAIN BOUNCEWARN LIMIT INET4 INET6 NODSN SESSION %token RELAY BACKUP VIA DELIVER TO LMTP MAILDIR MBOX RCPTTO HOSTNAME HOSTNAMES %token ACCEPT REJECT INCLUDE ERROR MDA FROM FOR SOURCE MTA PKI SCHEDULER %token ARROW AUTH TLS LOCAL VIRTUAL TAG TAGGED ALIAS FILTER KEY CA DHE @@ -515,14 +515,6 @@ opt_if_listen : INET4 { listen_opts.options |= LO_SSL; listen_opts.ssl = F_STARTTLS; } - | SECURE { - if (listen_opts.options & LO_SSL) { - yyerror("TLS mode already specified"); - YYERROR; - } - listen_opts.options |= LO_SSL; - listen_opts.ssl = F_SSL; - } | TLS_REQUIRE { if (listen_opts.options & LO_SSL) { yyerror("TLS mode already specified"); @@ -1512,7 +1504,6 @@ lookup(char *s) { "reject", REJECT }, { "relay", RELAY }, { "scheduler", SCHEDULER }, - { "secure", SECURE }, { "sender", SENDER }, { "senders", SENDERS }, { "session", SESSION }, |