Name
${cipher}
Synopsis
When an
inbound connection is made, the connecting client can request to use
STARTTLS for an encrypted session. When an outbound connection is
made, the local machine may request to use STARTTLS for an encrypted
session with the remote host. In either scenario, after agreement has
been made to encrypt, the ${alg_bits}
,
${cert_issuer}
,
${cert_subject}
, ${cert}
,
${cipher_bits}
, ${cipher}
,
${cn_issuer}
, ${cn_subject}
,
${tls_version}
, and ${verify}
macros are given values that describe the nature of the connection.
This ${cipher}
macro contains as its value the
cipher suite used for the connection. The possible suites are text
values that include EDH-DSS-DES-CBC3-SHA
,
EDH-RSA-DES-CBC3-SHA
,
DES-CBC-MD5
, and DES-CBC3-SHA
,
among others. If ${tls_version}
has a value, the
value in ${cipher}
is included as part of the text
in the Received
: header:
(version=${tls_version} cipher=${cipher} bits=${cipher_bits} verify=${verify})
If ${tls_version}
lacks a value, the preceding
text is not included.
${cipher}
is transient. If it is defined in the
configuration file or in the command line, that definition is ignored
by sendmail. Note that a
$&
prefix is necessary when you reference this
macro in rules (that is, use $&{cipher}
, not
${cipher}
).
Get Sendmail, 3rd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.