Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

dkimproxy.in(8) [debian man page]

dkimproxy.in(8) 					      System Manager's Manual						   dkimproxy.in(8)

NAME

       dkimproxy.in - SMTP proxy for verifying DKIM signatures

DESCRIPTION

       dkimproxy.in  listens on the IP address and TCP port specified by its first argument (the "listen" port), and sends the traffic it receives
       onto the second argument (the "relay" port), with messages getting verified and having an "Authentication-Results" header added to them.

SYNOPSIS

	 dkimproxy.in [options] LISTENADDR:PORT RELAYADDR:PORT
	   smtp options:
	     --conf_file=FILENAME
	     --listen=LISTENADDR:PORT
	     --relay=RELAYADDR:PORT
	     --reject-error

	   verification options:
	     --reject-fail
	     --hostname=HOSTNAME

	   daemon options:
	     --daemonize
	     --user=USER
	     --group=GROUP
	     --pidfile=PIDFILE
	     --min_servers=NUM

OPTIONS

       --daemonize

       If specified, the server will run in the background.

       --group=GROUP

       If specified, the daemonized process will setgid() to the specified GROUP.

       --hostname=HOSTNAME

       Overrides the hostname used in the Authentication-Results header.  This header gets added to every verified message.  Use  this	option	if
       the hostname that appears is not fully qualified or you want to use an alternate name.

       --pidfile=PIDFILE

       Creates a PID file (a file containing the PID of the process) for the daemonized process. This makes it possible to check the status of the
       process, and to cleanly shut it down.

       --reject-error

       This option specifies what to do if an error occurs during verification of a message. If this option is	specified,  the  message  will	be
       rejected  with  an  SMTP  error	code.  This will result in the MTA sending the message to try again later, or bounce it back to the sender
       (depending on the exact error code used). If this option is not specified, the message will be passed through with an error listed  in  the
       Authentication-Results header instead of the verification results.

       --reject-fail

       This  option  specifies what to do if verification fails and the sender signing policy says to reject the message. If this option is speci-
       fied, the message will be rejected with an SMTP error code.  This will result in the sending MTA to bounce the message back to the  sender.
       If this option is not specified, the message will pass through as normal.

       --user=USER

       If  specified, the daemonized process will setuid() to USER after completing any necessary privileged operations, but before accepting con-
       nections.

       --min_servers=NUM

       Number of process that DKIMproxy shall spawn and get ready for filtering.

EXAMPLE

       For example, if dkimproxy.in is started with:

	 dkimproxy.in --reject-fail --reject-error 127.0.0.1:10025 127.0.0.1:10026

       the proxy will listen on port 10025 and send the verified messages to some other SMTP service on port 10026.

CONFIGURATION FILE

       Parameters can be stored in a separate file instead of specifying them all on the command line. Use the conf_file  option  to  specify  the
       path to the configuration file, e.g.

	 dkimproxy.in --conf_file=/etc/dkimproxy_in.conf

       The format of the configuration file is one option per line: name of the option, space, then the value of the option. E.g.

	 # this is an example config file
	 listen      127.0.0.1:10025
	 relay	     127.0.0.1:10026
	 hostname    myhost.example.com
	 reject_fail

       is equivalent to

	 dkimproxy.out --hostname=myhost.example.com --reject-fail		     127.0.0.1:10025 127.0.0.1:10026

SEE ALSO

       dkimproxy.out(8), dkim_responder(1), dkimsign(1),  dkimverify(1)

																   dkimproxy.in(8)

Check Out this Related Man Page

Mail::DKIM(3)						User Contributed Perl Documentation					     Mail::DKIM(3)

NAME

       Mail::DKIM - Signs/verifies Internet mail with DKIM/DomainKey signatures

SYNOPSIS

	 # verify a message
	 use Mail::DKIM::Verifier;

	 # create a verifier object
	 my $dkim = Mail::DKIM::Verifier->new();

	 # read an email from stdin, pass it into the verifier
	 while (<STDIN>)
	 {
	     # remove local line terminators
	     chomp;
	     s/15$//;

	     # use SMTP line terminators
	     $dkim->PRINT("$_1512");
	 }
	 $dkim->CLOSE;

	 # what is the result of the verify?
	 my $result = $dkim->result;

DESCRIPTION

       This module implements the various components of the DKIM and DomainKeys message-signing and verifying standards for Internet mail.  It
       currently tries to implement these specifications:

       RFC4871, for DKIM
       RFC4870, for DomainKeys

       The module uses an object-oriented interface. You use one of two different classes, depending on whether you are signing or verifying a
       message. To sign, use the Mail::DKIM::Signer class. To verify, use the Mail::DKIM::Verifier class. Simple, eh?

SEE ALSO

       Mail::DKIM::Signer, Mail::DKIM::Verifier

       http://dkimproxy.sourceforge.net/

KNOWN BUGS

       Problems passing `make test' seem to usually point at a faulty DNS configuration on your machine, or something weird about your OpenSSL
       libraries.

       The "author signing policy" component is still under construction. The author signing policy is supposed to identify the practice of the
       message author, so you could for example reject a message from an author who claims they always sign their messages. See
       Mail::DKIM::Policy.

AUTHOR

       Jason Long, <jlong@messiah.edu>

COPYRIGHT AND LICENSE

       Copyright (C) 2006-2007, 2009 by Messiah College

       This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself, either Perl version 5.8.6 or,
       at your option, any later version of Perl 5 you may have available.

perl v5.12.5							    2010-11-14							     Mail::DKIM(3)
Man Page