5.3.3 Enable TLS with Build
To enable TLS in sendmail you need to add two new lines to your Build m4 file:
APPENDDEF(`conf_sendmail_ENVDEF??, `-DSTARTTLS??)
APPENDDEF(`conf_sendmail_LIBS??, `-lssl -lcrypto??)
Withth ese two lines in place, build a new sendmail. If you get an error suchas the
following:
tls.c:16: openssl/err.h: No such file or directory
Table 5-4. Acronyms, abbreviations, and terms for digital certificates
Term Description
CA Certificate authority (authority that issues a digital certificate)
Cert A digital certificate, but often means just the public part of the whole certificate
Cipher The type of encryption used for a connection
Client Certificate Identifies connecting client to the mail server
CN Common Name (the username or site name)
Key The private key, but often means just the private part of the whole certificate
Private Key The private-key part of a certificate
Public Key The public-key part of a certificate
Server Certificate Identifies mail server to connecting client
Revocation List A file which lists certificates that have been revoked and should no longer be considered valid
This is the Title of the Book, eMatter Edition
Copyright ?© 2007 O??™Reilly & Associates, Inc. All rights reserved.
206 | Chapter 5: Authentication and Encryption
you will need to let Build know where you installed the ssl components:
APPENDDEF(`confINCDIRS??, `-I/opt/packages/openssl/include??)
APPENDDEF(`confLIBDIRS??, `-L/opt/packages/openssl/lib??)
Here, we installed OpenSSL in the nonstandard path /opt/packages/openssl.
Pages:
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393