Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

opendkim-atpszone(8) [debian man page]

opendkim-atpszone(8)					      System Manager's Manual					      opendkim-atpszone(8)

NAME

       opendkim-atpszone - DKIM ATPS zone file generation tool

SYNOPSIS

       opendkim-atpszone  [-A]	[-C  address]  [-E  secs]  [-h	hash]  [-N  ns[,...]]  [-o file] [-r secs] [-R secs] [-S] [-t secs] [-T secs] [-v]
       [dataset]

DESCRIPTION

       opendkim-atpszone generates a file suitable for use with named(8) to publish a set of domains authorized as third-party signers for a local
       domain.

       The dataset parameter should specify a set of data as described in the opendkim(8) man page.  It can currently refer to flat files, Sleepy-
       cat databases, comma-separated lists, LDAP directories or SQL databases.  The keys in the named database are assumed to comprise a  set	of
       domains	that  are  to be advertised using the experimental Authorized Third-Party Signers protocol as permitted to sign mail using DKIM on
       behalf of the local domain.  Values in the database are not used.

OPTIONS

       -A     Adds a "._atps" suffix to records in the zone file.

       -C contact
	      Uses contact as the contact information to be used when an SOA record is generated (see -S below).  If not specified, the userid	of
	      the executing user and the local hostname will be used; if the executing user can't be determined, "hostmaster" will be used.

       -E secs
	      When generating an SOA record (see -S below), use secs as the default record expiration time.  The default is 604800.

       -h hash
	      Specifies  which	SHA  hash  algorithm to use.  Must be one of "none", "sha1" and "sha256", with "sha256" being the default if it is
	      available.

       -N nslist
	      Specifies a comma-separated list of nameservers, which will be output in NS records before the TXT records.  The first nameserver in
	      this list will also be used in the SOA record (if -S is also specified) as the authority hostname.

       -o file
	      Sends output to the named file rather than standard output.

       -r secs
	      When generating an SOA record (see -S below), use secs as the zone refresh time.	The default is 10800.

       -R secs
	      When generating an SOA record (see -S below), use secs as the zone retry time.  The default is 1800.

       -S     Asks for an SOA record to be generated at the top of the output.	The content of this output can be controlled using the -E, -r, -R,
	      -T options.  The serial number will be generated based on the current time of day.

       -t ttl Puts a TTL (time-to-live) value of ttl on all records output.  The units are in seconds.

       -T secs
	      When generating an SOA record (see -S below), use secs as the default record TTL time.  The default is 86400.

       -v     Increases the verbosity of debugging output written to standard error.

VERSION

       This man page covers the version of opendkim-atpszone that shipped with version 2.6.8 of OpenDKIM.

COPYRIGHT

       Copyright (c) 2011, 2012, The OpenDKIM Project.	All rights reserved.

SEE ALSO

       opendkim(8), opendkim.conf(5)

							       The OpenDKIM Project					      opendkim-atpszone(8)

Check Out this Related Man Page

opendkim-testkey(8)					      System Manager's Manual					       opendkim-testkey(8)

NAME

       opendkim-testkey - DKIM filter installation test

SYNOPSIS

       opendkim-testkey [-d domain] [-s selector] [-k keypath] [-v] [-x configfile]

DESCRIPTION

       opendkim-testkey verifies the setup of signing and verifying (private and public) keys for use with opendkim(8).

       The  test  program  will read a domain name and selector from the command line, configuration file or a key table, then query and parse the
       resulting DKIM key(s), reporting any errors found.

       If a key path is also provided, the test program will read the private key named and attempt to confirm that the private key  specified	by
       keypath (or in the key table) and the public DKIM key retrieved match.

OPTIONS

       -d domain
	      Names  the domain in which signing is to be done.  More specifically, names the domain in which the public key matching the provided
	      private key will be found.  This parameter must be provided either explicitly, or in the configuration file, or via a KeyTable  (see
	      opendkim.conf(5) for details).

       -k keypath
	      Specifies the path to the private key file which should be used for this test.  This parameter is optional

       -s selector
	      Names  the  selector within the specified domain whose public key should be retrieved and tested, comparing it to the private key if
	      provided.  This parameter must be provided either explicitly, or in the configuration file, or via a KeyTable (see  opendkim.conf(5)
	      for details).

       -v     Increases the amount of output (verbosity) of the program.  May be specified multiple times for increased output.

       -x conffile
	      Names a configuration file to be parsed.	See the opendkim.conf(5) man page for details.	The only values used are Domain, Selector,
	      KeyFile, KeyTable, TrustAnchorFile and UnboundConfigFile.  The default is /etc/opendkim.conf.

NOTES

       The test program will also complain if a private key file is readable by anyone other than the user executing the program.

VERSION

       This man page covers the version of opendkim-testkey that shipped with version 2.6.8 of OpenDKIM.

COPYRIGHT

       Copyright (c) 2007, 2008, Sendmail, Inc. and its suppliers.  All rights reserved.

       Copyright (c) 2009-2012, The OpenDKIM Project.  All rights reserved.

SEE ALSO

       opendkim(8)

       RFC6376 - DomainKeys Identified Mail

							       The OpenDKIM Project					       opendkim-testkey(8)
Man Page