- added sample authentication

- added sample antyvirus

Changed files:
    exim4.conf -> 1.4

diff --git a/exim4.conf b/exim4.conf
index 11cf3347b7d61a87c34d422ae45d44e290aef370..615618969ae596de1a575bec1b86906ec0554c82 100644 (file)
--- a/exim4.conf
+++ b/exim4.conf
@@ -58,6 +58,16 @@ domainlist local_domains = @
 domainlist relay_to_domains =
 hostlist   relay_from_hosts = 127.0.0.1
 
+# If You wish to enable support for clam antyvirus, uncomment the following
+# lines here, and search for 'acl' section of this file (look for 'begin acl' 
+# keyword). This will require clamav package to be installed and configured. 
+# Other antyvirus engines are also supported. Read 
+# /usr/share/doc/exim-*/exiscan-acl-spec.txt.gz for more info.
+
+# av_scanner = clamd:/var/lib/clamav/clamd.socket
+# acl_smtp_data = acl_check_data
+
+
 # Most straightforward access control requirements can be obtained by
 # appropriate settings of the above options. In more complicated situations, you
 # may need to modify the Access Control List (ACL) which appears later in this
@@ -221,6 +231,33 @@ timeout_frozen_after = 7d
 
 begin acl
 
+# This access control list is used for every message after DATA command in
+# incoming SMTP connection. It's used mainly for malware (viruses) scanning.
+# Uncomment it, 'av_scanner' and 'acl_smtp_data' to enable support for
+# antyvirus software. Read /usr/share/doc/exim-*/exiscan-acl-spec.txt.gz
+# for detailed instructions. Also remember to change 'mysecret' to
+# something else. This will add cryptographic "checks done" header that
+# will prevent re-scanning when the message re-visits one of your mail 
+# servers, and the body size did not change.
+  
+# acl_check_data:
+# 
+#   accept  condition = ${if eq {${hmac{md5}{mysecret}{$body_linecount}}}{$h_X-Scan-Signature:} {1}{0}}
+#   
+#   deny    message = $found_extension files are not accepted here
+#           demime = com:vbs:bat:pif:scr
+#   
+#   warn    message = X-MIME-Warning: Serious MIME defect detected ($demime_reason)
+#           demime = *
+#           condition = ${if >{$demime_errorlevel}{2}{1}{0}}
+#   
+#   deny    message = Virus found :$malware_name
+#           malware = *
+# 
+#   warn    message = X-Scan-Signature: ${hmac{md5}{mysecret}{$body_linecount}}
+# 
+#   accept
+
 # This access control list is used for every RCPT command in an incoming
 # SMTP message. The tests are run in order until the address is either
 # accepted or denied.
@@ -514,5 +551,20 @@ begin rewrite
 
 begin authenticators
 
+# Uncomment lines below to enable SMTP AUTH support. Be aware that this
+# requires cyrus-sasl-saslauthd package to be installed.
+
+# plain:
+#   driver = plaintext
+#   public_name = PLAIN
+#   server_condition = ${if saslauthd{{$1}{$3}{smtp}}{1}{0}}
+#   server_set_id = $2
+#
+# login:
+#   driver = plaintext
+#   public_name = LOGIN
+#   server_prompts = "Username:: : Password::"
+#   server_condition = ${if saslauthd{{$1}{$2}{smtp}}{1}{0}}
+#   server_set_id = $1            
 
 # End of Exim configuration file