somewhat Off topic, Sendmail Issue

Dean E. Weimer dweimer at
Wed Oct 12 21:43:04 UTC 2011

On 12.10.2011 15:16, Matthew Seaman wrote:

> _FFR_TLS_1 is actually already defined in the default sendmail on
> FreeBSD. See /usr/src/usr.sbin/sendmail/Makefile around line 63.
> It's also enabled in the ports version of sendmail, so long as you
> select the WITH_TLS option. I just added this setting to my sendmail
> config and it seems to work using the ports sendmail without having 
> to
> recompile anything.
> It could certainly do with being mentioned in the documentation more
> prominently. There's not a hint of the CipherList option in
> /usr/share/sendmail/cf/README
> _FFR_SMTP_SSL on the other hand, doesn't appear anywhere under 
> /usr/src
> -- think that must be a fossil remnant from some older version of
> sendmail.
> Cheers,
> Matthew
> -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP:
> Ramsgate JID:
> matthew at Kent, CT11 9PW

Interesting info, I will take a look at that Makefile and see what I 
find, I found those options to set originally on a web page, can't quite 
remember where, I pieced info from a few different locations to get 
everything working as I wanted.  I do know a lot of it was originally 
done for an older version of FreeBSD, so perhaps it was an FFR option at 
that time it was written.  One thing I have figured out in this process 
is that Sendmail FFR compiled options are basically undocumented outside 
of the source file comments.  Perhaps it was my inclusion of an old 
setting, that caused the ciphers to open up more to start with.  It did 
pass the tests as is, I will look more into this though.  And see if I 
can't slim down the overall steps to get the server up and running 
before it goes live on a production server.


  Dean E. Weimer
  dweimer at

More information about the freebsd-questions mailing list