forked from redvw/smf-spf
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsmf-spf.conf
189 lines (165 loc) · 4.16 KB
/
smf-spf.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
# /etc/mail/smfs/smf-spf.conf
#
# smf-spf configuration file v2.1.0 (read at program startup)
#
# Access control:
#
# Whitelisting exempts matching connections or messages from all further
# processing by this filter.
# Whitelist by IPv4 address of the connecting client
#
# The syntax is an IP address followed by a slash
# and a CIDR netmask (if the netmask is omitted, /32 is assumed).
#
WhitelistIP 127.0.0.0/8
WhitelistIP 10.0.0.0/8
WhitelistIP 172.16.0.0/12
WhitelistIP 192.168.0.0/16
# Whitelist by IPv6 address of the connecting client.
# CIDR notation is supported.
#
#WhitelistIP6 2001:db8:4321:abcd::/64
# Whitelist by a sender PTR record (reverse DNS record)
#
# Performs a case insensitive substring match
#
#WhitelistPTR .friendlydomain.tld
#WhitelistPTR friendlyhost.friendlydomain.tld
# Whitelist by an envelope sender e-Mail address
#
# Performs a case insensitive substring match
#
#WhitelistFrom friend@
#WhitelistFrom @friendlydomain.tld
#WhitelistFrom friend@friendlydomain.tld
# Whitelist by an envelope recipient e-Mail address.
#
# Performs a case insensitive substring match
#
#WhitelistTo postmaster@
#WhitelistTo @yourspamloverdomain.tld
#WhitelistTo spamlover@yourdomain.tld
# Configuration flags follow:
#
# Values of "on", "true", or "yes" enable a feature.
# Values of "off", "false", or "no" disable a feature.
# Some options take additional values. See comments.
#
# Always delay SPF check until RCPT stage.
# (Only needed if no WhitelistTo recipients are defined)
#
# Default: off
#
#DelayChecks off # (on|off)
# Refuse e-Mail messages at SPF Fail results (RFC-4408)
#
# Default: on
#
#RefuseFail on # (on|off)
# Reject (with a temporary error code) messages with
# SPF Temperror results
#
# Default: on
#
#RejectTempError on # (on|off)
# Reject messages with SPF Permerror results
#
# Default: off
#
#RejectPermError off # (on|off)
# Subject tagging of e-Mail messages at SPF SoftFail
# (and Fail, if RefuseFail set to off) results
#
# Default: on
#
#TagSubject on # (on|off)
# Subject tagging string
#
# Default: [SPF:fail]
#
#Tag [SPF:fail]
# Build RFC 4408 Received-SPF: header
#
# Default: on
#
# Additional values are supported to allow fine-tuning of the verbosity:
#
# on|true|yes: header includes all information
# off|false|no: header is never written
# description|verbose: include verbose explanation of result
# receiver: include name of receiving host
# clientip|ip: include IP address of connecting client
# envfrom: include envelope sender
# helo: include helo string
#
# Multiple options can be given in a comma-separated list.
#
# Examples:
#
# Default:
# Received-SPF: pass (smtp.mydomain.com: domain of sender@example.com designates
# 10.1.2.3 as permitted sender) receiver=smtp.mydomain.com; client-ip=10.1.2.3;
# envelope-from=sender@example.com; helo=mx.example.com;
#
#AddHeader on # same as: verbose,receiver,clientip,envfrom,helo
#
# Brief info:
# Received-SPF: pass client-ip=10.1.2.3; helo=mx.example.com;
#
#AddHeader clientip,helo
# Add RFC 5451 Authentication-Results: header
#
# Default: off
#
#AddAuthResultHeader off # (on|off|verbose)
# Add X-SPF-Scan-By header, showing the name and version of this filter
#
# Default: on
#
#AddSignatureHeader on # (on|off)
# Enable wrapping (folding) of long header lines
#
# Default: on
#
#WrapHeader on # (on|off)
# Set maximum width of inserted header fields
#
# Default: 78
#
#HeaderWidth 78 # (64-998)
# Quarantine of e-Mail messages at SPF SoftFail
# and Fail (if RefuseFail set to off) results
#
# Default: off
#
#Quarantine off # (on|off)
# Quarantine mailbox
#
# Default: postmaster
#
#QuarantineBox postmaster
#QuarantineBox spambox@yourdomain.tld
# In-memory cache engine TTL settings
#
# The time is given in seconds, except if a unit is given:
# m for minutes, h for hours, and d for days
# Specify zero to disable caching
#
# Default: 1h
#
#TTL 1h
# Run as a selected user (smf-spf must be started by root)
#
# Default: smfs
#
#User smfs
# Socket used to communicate with Sendmail daemon
#
# Default: unix:/var/run/smfs/smf-spf.sock
#
#Socket unix:/var/run/smfs/smf-spf.sock
# Facility for logging via Syslog daemon
#
# Default: mail
#
#Syslog mail # (daemon|mail|local0...local7)