Also see
site.config.m4This assumes that you already have
tls working.
Add this to your
sendmail-ssmtp.mc file:
FEATURE(no_default_msa)
DAEMON_OPTIONS(`Addr=142.46.200.221, Port=465, Name=SSA, M=Eas')
TRUST_AUTH_MECH(`PLAIN LOGIN')
define(`confAUTH_MECHANISMS', `PLAIN LOGIN')
define(`confAUTH_OPTIONS', `A,p,y')
You probably want to run a separate instance with
no_default_msa here so that your port 25 sendmail doesn't insist on SSL connectivity.
AUTH_OPTIONS details:
- A: Require successfull authentication before sending. THis is a work-around for some broken MTAs (and some clients which pretend to be MTAs; Microsoft, we're looking at you.)
- p: Require an encrypted tunnel (SSMTP, or TLS) before permitting PLAIN or LOGIN mechanims types
- y: Don't permit annonymous login mechanisms