>>  Never mind my previous ravings.
>>  The trick is to use -D_FFR_TLS_TOREK.
>>  Given this, one doesn't need sfio at all....
>>  Hmm. Why haven't I see my emails to -current-users? aha... cause I'm not
>>running sendmail to send stuff out.
>>  Would it be reasonable to add STARTTLS to default sendmail build?
>	as long as MKCRYPTO=yes, I think that's ok.  do we have other
>	requirement to use secure SMTP?  (certificate? special CF file?)

	does it really work right?

itojun


Index: dist/sendmail/sendmail/sendmail.h
===================================================================
RCS file: /cvsroot/gnusrc/gnu/dist/sendmail/sendmail/sendmail.h,v
retrieving revision 1.3
diff -c -r1.3 sendmail.h
*** dist/sendmail/sendmail/sendmail.h	2000/07/23 14:24:58	1.3
--- dist/sendmail/sendmail/sendmail.h	2000/10/07 12:31:13
***************
*** 108,113 ****
--- 108,115 ----
    ERROR README: Can not do both SFIO and _FFR_TLS_TOREK
  # endif /* SFIO && _FFR_TLS_TOREK */
  #  include <openssl/ssl.h>
+ /* avoid namespace conflict with net/route.h - don't pollute the namespace! */
+ #undef Free
  #endif /* STARTTLS */
  
  #if SASL  /* include the sasl include files if we have them */
Index: usr.sbin/sendmail/sendmail/Makefile
===================================================================
RCS file: /cvsroot/gnusrc/gnu/usr.sbin/sendmail/sendmail/Makefile,v
retrieving revision 1.7
diff -c -r1.7 Makefile
*** usr.sbin/sendmail/sendmail/Makefile	2000/08/20 19:37:45	1.7
--- usr.sbin/sendmail/sendmail/Makefile	2000/10/07 12:31:14
***************
*** 16,21 ****
--- 16,28 ----
  LDADD+=		-lwrap -L${LIBSMUTILDIR} -lsmutil -lutil
  DPADD+=		${LIBWRAP} ${LIBSMUTILDIR}/libsmutil.a ${LIBUTIL}
  
+ .if ${MKCRYPTO} == "yes"
+ # TLS support
+ LDADD+=		-lssl -lcrypto
+ DPADD+=		${LIBSSL} ${LIBCRYPTO}
+ CPPFLAGS+=	-D_FFR_TLS_TOREK -DSTARTTLS
+ .endif
+ 
  SRCS=		alias.c arpadate.c bf_torek.c clock.c collect.c \
  		conf.c control.c convtime.c daemon.c deliver.c \
  		domain.c envelope.c err.c headers.c macro.c main.c \