SMM:08-60
Sendmail Installation and Operation Guide
a boolean (with legal values "t", "T", "f", or "F"; the default is TRUE), or a time interval.
All filenames used in options should be absolute paths, i.e., starting with '/'. Relative file-
names most likely cause surprises during operation (unless otherwise noted).
The options supported (with the old, one character names in brackets) are:
AliasFile=spec, spec, ...
[A] Specify possible alias file(s). Each spec should be in the format ``class: info''
where class: is optional and defaults to ``implicit''. Note that info is required for
all classes except "ldap". For the "ldap" class, if info is not specified, a default
info value is used as follows:
-k (&(objectClass=sendmailMTAAliasObject)
(sendmailMTAAliasName=aliases)
(|(sendmailMTACluster=${sendmailMTACluster})
(sendmailMTAHost=$j))
(sendmailMTAKey=%0))
-v sendmailMTAAliasValue
Depending on how sendmail is compiled, valid classes are "implicit" (search
through a compiled-in list of alias file types, for back compatibility), "hash" (if
NEWDB
is specified), "btree" (if
NEWDB
is specified), "dbm" (if
NDBM
is speci-
fied), "stab" (internal symbol table -- not normally used unless you have no other
database lookup), "sequence" (use a sequence of maps previously declared),
"ldap" (if
LDAPMAP
is specified), or "nis" (if
NIS
is specified). If a list of specs
are provided, sendmail searches them in order.
AliasWait=timeout
[a] If set, wait up to timeout (units default to minutes) for an "@:@" entry to exist
in the alias database before starting up. If it does not appear in the timeout inter-
val issue a warning.
AllowBogusHELO
[no short name] If set, allow HELO SMTP commands that don't include a host
name. Setting this violates RFC 1123 section 5.2.5, but is necessary to interoper-
ate with several SMTP clients. If there is a value, it is still checked for legitimacy.
AuthMaxBits=N [no short name] Limit the maximum encryption strength for the security layer in
SMTP AUTH (SASL). Default is essentially unlimited. This allows to turn off
additional encryption in SASL if STARTTLS is already encrypting the communi-
cation, because the existing encryption strength is taken into account when choos-
ing an algorithm for the security layer. For example, if STARTTLS is used and
the symmetric cipher is 3DES, then the the keylength (in bits) is 168. Hence set-
ting AuthMaxBits to 168 will disable any encryption in SASL.
AuthMechanisms [no short name] List of authentication mechanisms for AUTH (separated by spa-
ces). The advertised list of authentication mechanisms will be the intersection of
this list and the list of available mechanisms as determined by the Cyrus SASL
library. If STARTTLS is active, EXTERNAL will be added to this list. In that
case, the value of {cert_subject} is used as authentication id.
AuthOptions
[no short name] List of options for SMTP AUTH consisting of single characters
with intervening white space or commas.