From aa695749f28f0076d276c68fa9cccb925b21cc67 Mon Sep 17 00:00:00 2001
From: David Woodhouse <dwmw@amazon.co.uk>
Date: Wed, 1 Jul 2020 09:51:18 +0100
Subject: [PATCH] desiato as non-mail host

---
 sites/desiato | 85 +++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 85 insertions(+)
 create mode 100644 sites/desiato

diff --git a/sites/desiato b/sites/desiato
new file mode 100644
index 0000000..47d1bec
--- /dev/null
+++ b/sites/desiato
@@ -0,0 +1,85 @@
+primary_hostname = desiato.infradead.org
+
+# Listen only on localhost
+local_interfaces = <;   127.0.0.1 ; ::1
+
+queue_list_requires_admin = false
+
+qualify_domain = infradead.org
+
+trusted_users = mail
+never_users = root
+
+gecos_pattern = ^([^,:]*)
+gecos_name = $1
+
+log_selector =  \
+              +address_rewrite \
+              +smtp_confirmation \
+              +smtp_protocol_error \
+	      +smtp_syntax_error \
+	      +sender_on_delivery
+
+smtp_return_error_details = true
+accept_8bitmime
+tls_advertise_hosts = *
+tls_certificate = /usr/share/ssl/certs/exim.pem
+tls_privatekey = /usr/share/ssl/certs/exim.pem
+
+acl_smtp_rcpt = accept
+acl_smtp_data = check_content_shinybook
+
+freeze_tell = postmaster@infradead.org
+allow_domain_literals
+
+ignore_bounce_errors_after = 3d
+timeout_frozen_after = 14d
+
+.include /etc/exim/authclient
+
+begin acl
+
+check_content_shinybook:
+  warn  condition = ${if !def:h_Message-ID: {1}}
+	message = Message-ID: <E$message_id@$primary_hostname>
+  warn  condition = ${if !def:h_Date: {1}}
+	message = Date: $tod_full
+  warn  condition = ${if !def:h_From: {1}}
+	message = From: ${if eq{$sender_address}{} \
+				{MAILER-DAEMON <postmaster@infradead.org>}\
+				{$sender_address}}
+  accept
+
+begin authenticators
+
+infradead_auth:
+  driver = cram_md5
+  public_name = CRAM-MD5
+  client_name = SMTPAUTH_USERNAME
+  client_secret = SMTPAUTH_PASSWORD
+
+begin routers
+
+#redhat_internal:
+#  driver = dnslookup
+#  transport = remote_smtp
+#  domains = redhat.com : *.redhat.com
+
+everything:
+  driver = manualroute
+  route_data = smtpauth.infradead.org
+  transport = remote_msa
+
+begin transports
+
+remote_smtp:
+  driver = smtp
+
+remote_msa:
+  driver = smtp
+  port = 587
+  hosts_require_auth = *
+
+
+begin rewrite
+backuppc@infradead.org dwmw2-forward@infradead.org F
-- 
2.49.0