dnl $Id: site.config.m4,v 1.2 2006/06/01 04:26:14 jmates Exp $ dnl dnl The author disclaims all copyrights and releases this document into dnl the public domain. dnl dnl Sample sendmail 8.12 on Mac OS X compile configuration file. dnl dnl To compile Sendmail with the definitions present in this file, cd dnl into the sendmail source directory, and run: dnl dnl sh Build -c -f /path/to/this/site.config.m4 dnl sudo sh Build install dnl dnl I recommend keeping custom site.config.m4 in the /etc/mail dnl directory for the system in question. dnl for IPv6 support (requires Darwin 6.0 (e.g. OS X 10.2)) APPENDDEF(`confENVDEF', `-DNETINET6') dnl BSD Load Average support APPENDDEF(`confENVDEF', `-DLA_TYPE=LA_SUBR') dnl regex to support Header-parsing rules of various kinds, e.g. to do dnl quick-fix blocking on the latest Microsoft malware. APPENDDEF(`confMAPDEF', `-DMAP_REGEX') dnl SMTP AUTH support; requires cyrus-sasl to be installed on the system dnl APPENDDEF(`confENVDEF', `-DSASL=20113') dnl APPENDDEF(`confLIBS', `-lsasl2.2.0.1') dnl allow relaying to folks who auth with following "trusted" methods dnl define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN') dnl TRUST_AUTH_MECH(`GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN') dnl the _FFR_SASL_OPTS allows us to set AUTH_OPTIONS to disallow LOGIN dnl and PLAIN over non-TLS links (prevents plaintext password dnl exposure, unless you are using IPSec or something) dnl APPENDDEF(`confENVDEF', `-D_FFR_SASL_OPTS') dnl define(`confAUTH_OPTIONS', `p') dnl external filter support dnl APPENDDEF(`confENVDEF', `-DMILTER') dnl APPENDDEF(`conf_libmilter_ENVDEF', `-D_FFR_MILTER_ROOT_UNSAFE') dnl STARTTLS support (link integrity, privacy and security), requires dnl OpenSSL (and development headers) to be installed on system first. APPENDDEF(`confENVDEF', `-DSTARTTLS') APPENDDEF(`confLIBS', `-lssl -lcrypto') dnl _FFR_SMTP_SSL option allows use of 'smtps' for connections using dnl TLS without STARTTLS upwards-negotiation. You will also need to dnl configure a new daemon to live at "smtps" port APPENDDEF(`confENVDEF', `-D_FFR_SMTP_SSL') dnl for proper smtps support, you will need the following line in your dnl sendmail.mc file; placing it here is dangerous unless you also have dnl a default daemon to listen on port 25 in your .mc file! dnl DAEMON_OPTIONS(`Port=smtps, Name=SSLMTA, M=s') dnl additional TLS options, like CipherList dnl http://www.sendmail.org/~ca/email/tricks.html has (sparse) details APPENDDEF(`confENVDEF', `-D_FFR_TLS_1') dnl tcp_wrappers support (could slow sendmail down, as libwrap has to dnl do it's own DNS queries to figure out whether the host is allowed dnl or not, and on a paranoid system forces the addition of a dnl dnl sendmail: ALL dnl dnl line to /etc/hosts.allow for mail to work. APPENDDEF(`confENVDEF', `-DTCPWRAPPERS') APPENDDEF(`conf_sendmail_LIBS', `-lwrap') dnl Mac OS 10.1 and higher have this, yay! APPENDDEF(`confENVDEF', `-DHASURANDOMDEV') dnl now, the fun part: configure paths for your system (how to find dnl libs and includes) dnl dnl Unix is both mighty picky and flexible in this regard, so you may dnl have to tweak the below paths or softlink various lib*.so and/or dnl *.h files to places where the build process expects to find them. dnl dnl This is especially true for cyrus-sasl, which usually gets dnl installed to /usr/local but likes to live under /usr at runtime. dnl APPENDDEF(`confLIBDIRS', `-L/usr/local/ssl/lib') dnl APPENDDEF(`confINCDIRS', `-I/usr/local/ssl/include')