# # Copyright (c) 2000-2002 Richard Nelson. All Rights Reserved. # # This file is used to configure Sendmail for use with Debian systems. # # # Copyright (c) 1998-2004, 2009, 2010 Proofpoint, Inc. and its suppliers. # All rights reserved. # Copyright (c) 1983, 1995 Eric P. Allman. All rights reserved. # Copyright (c) 1988, 1993 # The Regents of the University of California. All rights reserved. # # By using this file, you agree to the terms and conditions set # forth in the LICENSE file which can be found at the top level of # the sendmail distribution. # # ###################################################################### ###################################################################### ##### ##### SENDMAIL CONFIGURATION FILE ##### ##### built by root@ip-172-31-29-215 on Sat 31 Jul 2021 08:58:04 PM CDT ##### in / ##### using /usr/share/sendmail/cf/ as configuration include directory ##### ###################################################################### ##### ##### DO NOT EDIT THIS FILE! Only edit the source .mc file. ##### ###################################################################### ###################################################################### ##### $Id: cfhead.m4,v 8.122 2013-11-22 20:51:13 ca Exp $ ##### ##### $Id: cf.m4,v 8.33 2013-11-22 20:51:13 ca Exp $ ##### ##### $Id: submit.mc, v 8.15.2-18 2020-03-08 00:39:49 cowboy Exp $ ##### ##### $Id: autoconf.m4, v 8.15.2-18 2020-03-08 00:39:49 cowboy Exp $ ##### ##### $Id: debian.m4, v 8.15.2-18 2020-03-08 00:39:49 cowboy Exp $ ##### # #------------------------------------------------------------------------- # # Undocumented features are available in Debian Sendmail 8.15.2-18. # * none # # _FFR_ features are available in Debian Sendmail 8.15.2-18. # * milter # * -D_FFR_QUEUE_SCHED_DBG -D_FFR_SKIP_DOMAINS -D_FFR_GROUPREADABLEAUTHINFOFILE -D_FFR_DAEMON_NETUNIX -D_FFR_NO_PIPE -D_FFR_SHM_STATUS -D_FFR_RHS -D_FFR_MAIL_MACRO -D_FFR_QUEUEDELAY=1 -D_FFR_BADRCPT_SHUTDOWN -D_FFR_RESET_MACRO_GLOBALS -D_FFR_TLS_1 -D_FFR_TLS_EC -D_FFR_DEAL_WITH_ERROR_SSL #------------------------------------------------------------------------- # # These _FFR_ features are for sendmail.mc processing # #------------------------------------------------------------------------- ##### $Id: debian-msp.m4, v 8.15.2-18 2020-03-08 00:39:49 cowboy Exp $ ##### ##### $Id: no_default_msa.m4,v 8.3 2013-11-22 20:51:11 ca Exp $ ##### ##### $Id: msp.m4,v 1.34 2013-11-22 20:51:11 ca Exp $ ##### ##### $Id: no_default_msa.m4,v 8.3 2013-11-22 20:51:11 ca Exp $ ##### ##### $Id: proto.m4,v 8.762 2013-11-22 20:51:13 ca Exp $ ##### # level 10 config file format V10/Berkeley # override file safeties - setting this option compromises system security, # addressing the actual file configuration problem is preferred # need to set this before any file actions are encountered in the cf file #O DontBlameSendmail=safe # default LDAP map specification # need to set this now before any LDAP maps are defined #O LDAPDefaultSpec=-h localhost ################## # local info # ################## # my LDAP cluster # need to set this before any LDAP lookups are done (including classes) #D{sendmailMTACluster}$m Cwlocalhost # my official domain name # ... define this only if sendmail cannot automatically determine your domain #Dj$w.Foo.COM # host/domain names ending with a token in class P are canonical CP. # "Smart" relay host (may be null) DS # operators that cannot be in local usernames (i.e., network indicators) CO @ % ! # a class with just dot (for identifying canonical names) C.. # a class with just a left bracket (for identifying domain literals) C[[ # Resolve map (to check if a host exists in check_mail) Kresolve host -a -T C{ResOk}OKR # Hosts for which relaying is permitted ($=R) FR-o /etc/mail/relay-domains %[^\#] # arithmetic map Karith arith # dequoting map Kdequote dequote # class E: names that should be exposed as from this host, even if we masquerade # class L: names that should be delivered locally, even if we have a relay # class M: domains that should be converted to $M # class N: domains that should not be converted to $M #CL root # my name for error messages DnMAILER-DAEMON D{MTAHost}[127.0.0.1] # Configuration version number DZ8.15.2/Submit ############### # Options # ############### # strip message body to 7 bits on input? O SevenBitInput=False # 8-bit data handling #O EightBitMode=pass8 # wait for alias file rebuild (default units: minutes) O AliasWait=10 # location of alias file #O AliasFile=/etc/mail/aliases # minimum number of free blocks on filesystem O MinFreeBlocks=100 # maximum message size #O MaxMessageSize=0 # substitution for space (blank) characters O BlankSub=. # avoid connecting to "expensive" mailers on initial submission? O HoldExpensive=False # checkpoint queue runs after every N successful deliveries #O CheckpointInterval=10 # default delivery mode O DeliveryMode=i # error message header/file #O ErrorHeader=/etc/mail/error-header # error mode #O ErrorMode=print # save Unix-style "From_" lines at top of header? #O SaveFromLine=False # queue file mode (qf files) O QueueFileMode=0660 # temporary file mode O TempFileMode=0640 # match recipients against GECOS field? #O MatchGECOS=False # maximum hop count #O MaxHopCount=25 # location of help file O HelpFile=/etc/mail/helpfile # ignore dots as terminators in incoming messages? #O IgnoreDots=False # name resolver options O ResolverOptions=+WorkAroundBrokenAAAA # deliver MIME-encapsulated error messages? O SendMimeErrors=True # Forward file search path O ForwardPath # open connection cache size O ConnectionCacheSize=2 # open connection cache timeout O ConnectionCacheTimeout=5m # persistent host status directory O HostStatusDirectory # single thread deliveries (requires HostStatusDirectory)? #O SingleThreadDelivery=False # use Errors-To: header? O UseErrorsTo=False # use compressed IPv6 address format? #O UseCompressedIPv6Addresses # log level O LogLevel=9 # send to me too, even in an alias expansion? O MeToo=True # verify RHS in newaliases? O CheckAliases=False # default messages to old style headers if no special punctuation? O OldStyleHeaders=True # SMTP daemon options O DaemonPortOptions=Name=NoMTA, Addr=127.0.0.1, M=E # SMTP client options #O ClientPortOptions=Family=inet, Address=0.0.0.0 # Modifiers to define {daemon_flags} for direct submissions #O DirectSubmissionModifiers # Use as mail submission program? See sendmail/SECURITY O UseMSP=True # privacy flags O PrivacyOptions=goaway,noetrn,restrictqrun # who (if anyone) should get extra copies of error messages #O PostmasterCopy=Postmaster # slope of queue-only function #O QueueFactor=600000 # limit on number of concurrent queue runners #O MaxQueueChildren # maximum number of queue-runners per queue-grouping with multiple queues #O MaxRunnersPerQueue=1 # priority of queue runners (nice(3)) #O NiceQueueRun # shall we sort the queue by hostname first? #O QueueSortOrder=priority # minimum time in queue before retry #O MinQueueAge=30m # maximum time in queue before retry (if > 0; only for exponential delay) #O MaxQueueAge # how many jobs can you process in the queue? #O MaxQueueRunSize=0 # perform initial split of envelope without checking MX records #O FastSplit=1 # queue directory O QueueDirectory=/var/spool/mqueue-client # key for shared memory; 0 to turn off, -1 to auto-select #O SharedMemoryKey=0 # file to store auto-selected key for shared memory (SharedMemoryKey = -1) #O SharedMemoryKeyFile # timeouts (many of these) #O Timeout.initial=5m #O Timeout.connect=5m #O Timeout.aconnect=0s O Timeout.iconnect=2s #O Timeout.helo=5m O Timeout.mail=2m #O Timeout.rcpt=1h O Timeout.datainit=2m #O Timeout.datablock=1h #O Timeout.datafinal=1h O Timeout.rset=1m O Timeout.quit=2m #O Timeout.misc=2m O Timeout.command=5m O Timeout.ident=5s #O Timeout.fileopen=60s #O Timeout.control=2m O Timeout.queuereturn=5d #O Timeout.queuereturn.normal=5d #O Timeout.queuereturn.urgent=2d #O Timeout.queuereturn.non-urgent=7d #O Timeout.queuereturn.dsn=5d O Timeout.queuewarn=4h #O Timeout.queuewarn.normal=4h #O Timeout.queuewarn.urgent=1h #O Timeout.queuewarn.non-urgent=12h #O Timeout.queuewarn.dsn=4h O Timeout.hoststatus=0 #O Timeout.resolver.retrans=5s #O Timeout.resolver.retrans.first=5s #O Timeout.resolver.retrans.normal=5s #O Timeout.resolver.retry=4 #O Timeout.resolver.retry.first=4 #O Timeout.resolver.retry.normal=4 #O Timeout.lhlo=2m #O Timeout.auth=10m #O Timeout.starttls=1h # time for DeliverBy; extension disabled if less than 0 #O DeliverByMin=0 # should we not prune routes in route-addr syntax addresses? #O DontPruneRoutes=False # queue up everything before forking? O SuperSafe=True # status file O StatusFile=/var/lib/sendmail/sm-client.st # time zone handling: # if undefined, use system default # if defined but null, use TZ envariable passed in # if defined and non-null, use that info #O TimeZoneSpec= # default UID (can be username or userid:groupid) O DefaultUser=mail:mail # list of locations of user database file (null means no lookup) #O UserDatabaseSpec=/etc/mail/userdb # fallback MX host #O FallbackMXhost=fall.back.host.net # fallback smart host #O FallbackSmartHost=fall.back.host.net # if we are the best MX host for a site, try it directly instead of config err #O TryNullMXList=False # load average at which we just queue messages #O QueueLA=8 # load average at which we refuse connections #O RefuseLA=12 # log interval when refusing connections for this long #O RejectLogInterval=3h # load average at which we delay connections; 0 means no limit #O DelayLA=0 # maximum number of children we allow at one time #O MaxDaemonChildren=0 # maximum number of new connections per second #O ConnectionRateThrottle=0 # Width of the window #O ConnectionRateWindowSize=60s # work recipient factor #O RecipientFactor=30000 # deliver each queued job in a separate process? #O ForkEachJob=False # work class factor #O ClassFactor=1800 # work time factor #O RetryFactor=90000 # default character set #O DefaultCharSet=unknown-8bit # service switch file (name hardwired on Solaris, Ultrix, OSF/1, others) #O ServiceSwitchFile=/etc/mail/service.switch # hosts file (normally /etc/hosts) #O HostsFile=/etc/hosts # dialup line delay on connection failure #O DialDelay=0s # action to take if there are no recipients in the message #O NoRecipientAction=none # chrooted environment for writing to files O SafeFileEnvironment=/ # are colons OK in addresses? #O ColonOkInAddr=True # shall I avoid expanding CNAMEs (violates protocols)? #O DontExpandCnames=False # SMTP initial login message (old $e macro) O SmtpGreetingMessage=$j Sendmail $v/$Z; $b; (No UCE/UBE) $?{client_addr}logging access from: ${client_name}(${client_resolve})-$_$. # UNIX initial From header format (old $l macro) O UnixFromLine=From $g $d # From: lines that have embedded newlines are unwrapped onto one line #O SingleLineFromHeader=False # Allow HELO SMTP command that does not include a host name #O AllowBogusHELO=False # Characters to be quoted in a full name phrase (@,;:\()[] are automatic) O MustQuoteChars=.' # delimiter (operator) characters (old $o macro) O OperatorChars=.:%@!^/[]+ # shall I avoid calling initgroups(3) because of high NIS costs? #O DontInitGroups=False # are group-writable :include: and .forward files (un)trustworthy? # True (the default) means they are not trustworthy. #O UnsafeGroupWrites=True # where do errors that occur when sending errors get sent? #O DoubleBounceAddress=postmaster # issue temporary errors (4xy) instead of permanent errors (5xy)? #O SoftBounce=False # where to save bounces if all else fails O DeadLetterDrop=/var/lib/sendmail/dead.letter # what user id do we assume for the majority of the processing? O RunAsUser=smmsp # maximum number of recipients per SMTP envelope #O MaxRecipientsPerMessage=0 # limit the rate recipients per SMTP envelope are accepted # once the threshold number of recipients have been rejected #O BadRcptThrottle=0 # shall we get local names from our installed interfaces? O DontProbeInterfaces=True # Return-Receipt-To: header implies DSN request O RrtImpliesDsn=False # override connection address (for testing) #O ConnectOnlyTo=0.0.0.0 # Trusted user for file ownership and starting the daemon O TrustedUser=smmsp # Control socket for daemon management O ControlSocketName=/var/run/sendmail/msp/smcontrol # Maximum MIME header length to protect MUAs #O MaxMimeHeaderLength=0/0 # Maximum length of the sum of all headers #O MaxHeadersLength=32768 # Maximum depth of alias recursion #O MaxAliasRecursion=10 # location of pid file O PidFile=/var/run/sendmail/msp/sendmail.pid # Prefix string for the process title shown on 'ps' listings O ProcessTitlePrefix=MSP # Data file (df) memory-buffer file maximum size #O DataFileBufferSize=4096 # Transcript file (xf) memory-buffer file maximum size #O XscriptFileBufferSize=4096 # lookup type to find information about local mailboxes #O MailboxDatabase=pw # override compile time flag REQUIRES_DIR_FSYNC #O RequiresDirfsync=true # list of authentication mechanisms #O AuthMechanisms=EXTERNAL GSSAPI KERBEROS_V4 DIGEST-MD5 CRAM-MD5 # Authentication realm #O AuthRealm # default authentication information for outgoing connections #O DefaultAuthInfo=/etc/mail/default-auth-info # SMTP AUTH flags #O AuthOptions # SMTP AUTH maximum encryption strength #O AuthMaxBits # SMTP STARTTLS server options #O TLSSrvOptions # SSL cipherlist #O CipherList # server side SSL options #O ServerSSLOptions # client side SSL options #O ClientSSLOptions # Input mail filters #O InputMailFilters # CA directory #O CACertPath # CA file #O CACertFile # Server Cert #O ServerCertFile # Server private key #O ServerKeyFile # Client Cert #O ClientCertFile # Client private key #O ClientKeyFile # File containing certificate revocation lists #O CRLFile # DHParameters (only required if DSA/DH is used) #O DHParameters # Random data source (required for systems without /dev/urandom under OpenSSL) #O RandFile # fingerprint algorithm (digest) to use for the presented cert #O CertFingerprintAlgorithm # Maximum number of "useless" commands before slowing down #O MaxNOOPCommands=20 # Name to use for EHLO (defaults to $j) #O HeloName ############################ # QUEUE GROUP DEFINITIONS # ############################ ########################### # Message precedences # ########################### Pfirst-class=0 Pspecial-delivery=100 Plist=-30 Pbulk=-60 Pjunk=-100 ##################### # Trusted users # ##################### # this is equivalent to setting class "t" #Ft/etc/mail/trusted-users %[^\#] Troot Tdaemon Tuucp ######################### # Format of headers # ######################### H?P?Return-Path: <$g> HReceived: $?sfrom $s $.$?_($?s$|from $.$_) $.$?{auth_type}(authenticated$?{auth_ssf} bits=${auth_ssf}$.) $.by $j ($v/$Z)$?r with $r$. id $i$?{tls_version} (version=${tls_version} cipher=${cipher} bits=${cipher_bits} verify=${verify})$.$?u for $u; $|; $.$b H?D?Resent-Date: $a H?D?Date: $a H?F?Resent-From: $?x$x <$g>$|$g$. H?F?From: $?x$x <$g>$|$g$. H?x?Full-Name: $x # HPosted-Date: $a # H?l?Received-Date: $b H?M?Resent-Message-Id: <$t.$i@$j> H?M?Message-Id: <$t.$i@$j> #