Ahem. I still think it would be great if this could get applied before yet another release goes by. ;)
--Kyle
Begin forwarded message:
Date: Mon, 28 Mar 2016 07:34:21 -0700
From: Kyle Amon <am...@backwatcher.com>
To: ports@openbsd.org
Subject: ECC support for sendmail
Hi,
Please consider adding the following to the OpenBSD sendmail port in
order to add ECC support to STARTTLS (-D_FFR_TLS_EC), and hopefully to
add a little more granular control of TLS (-D_FFR_TLS_SE_OPTS) as well
(but at least the former seems a quite reasonable default in CE 2016).
--- sendmail/files/site.OS.m4.dist Mon Mar 28 06:39:40 2016
+++ sendmail/files/site.OS.m4 Mon Mar 28 06:50:33 2016
@@ -32,6 +32,8 @@
APPENDDEF(`conf_sendmail_ENVDEF', `-DMILTER')
dnl (START)TLS
APPENDDEF(`confENVDEF', `-DSTARTTLS')dnl
+APPENDDEF(`confENVDEF', `-D_FFR_TLS_EC')dnl
+APPENDDEF(`confENVDEF', `-D_FFR_TLS_SE_OPTS')dnl
APPENDDEF(`confLIBS', `-lssl -lcrypto')dnl
dnl Flavors
dnl =======
Thanks and Best Regards,
--Kyle
P.S. Also, please note that I'm not on the ports mailing list.
--
CA +1-778-819-UNIX BackWatcher, Inc.
US +1-425-584-UNIX Information Security
SIPS am...@backwatcher.com www.backwatcher.ca
INUM +883-5100-0990-1657 | ISN UNIX*1917 | C*NET 1-731-UNIX
GPG ed25519/29F16B93AB0EA2FC [ed25519/AB0EA2FC]
D90D F23C AB7A E0B4 4A04 14EA 29F1 6B93 AB0E A2FC
OTR E1A46361 9FD0D801 0132D21A FE2E96BE 39E3F069 : xmpp am...@backwatcher.com
5AB3E0B8 31F6ADB4 9A7D2FC2 A8235281 5776701E : silc silcnet
pgpPcDbmyCLjZ.pgp
Description: OpenPGP digital signature
