i n f r a d i g


General directive
 
Meaning
(can occur in any file)
  
TIMEOUT secondsIdle connection timeout in seconds (default is 300)
BIND [ip-address]IP address to listen on eg. 10.0.0.1 (default is any address)
LOCAL [domain]The domain to which the server belongs.
PREFIX [string]Prefix for web-admin domain.
ROTATELOGS [d|w|m]Rotate the log files (default is monthly)
VERBOSE 0Set to >0 to get more info in the logs
LOGON-NT domainDomain accounts on the system
ACCOUNTS filenameLocal accounts on the system
ALIASES filenameUser-level aliases
VIRTUSERTABLE filenameUser and/or domain level aliases
MAXSERVERS nMaximum number of server threads to accept on (default value is 128)
MAXDEQUEUE nMaximum number of dequeue threads to send mail on (default value is 4)
INCLUDE filenameSource config information from named file
SYMBOL name valueAssign value to a symbol
STARTTLS 0|1Allow switch to SSL/TLS security
PASSTHRU ip-addressAllow 'ip-address' to bypass connection limits
LDAP_HOST hostnameLDAP host used to connect to
LDAP_PORT portLDAP port used to connect to (default 389)
LDAP_BIND_DN dnLDAP bind DN to use (default is blank)
LDAP_BIND_PASSWORD passLDAP bind password to use (default is blank)
LDAP_EMAIL_ATTRIB nameName of the LDAP attribute that holds Intenet email addresses
LDAP_PASSWORD_ATTRIB nameName of the LDAP attribute that holds the password
LDAP_STORAGE_ATTRIB nameName of the LDAP attribute that holds the storage area
LDAP_FORWARD_ATTRIB nameName of the LDAP attribute that holds the forwarding address
LDAP_ALTERNATE_ATTRIB nameName of the LDAP attribute that holds the alternate (alias) address
LDAP_REFERRAL_ATTRIB nameName of the LDAP attribute that holds the referral address

BIND [ip-address]

On a multi-homed system associate with just one IP (specified) address (default is any address). Only useful if you want to run multiple servers.

LOCAL [domain]

The domain to which the server belongs (or blank). Used to qualify machine names that can't be resolved properly.

PREFIX [string]

Prefix to add to domain name when accessing delegated domain adminsitration. For example... PREFIX mail. when accessing 'domain' will connect via web-admin to server 'mail.domain'. Only used in the full release.

ROTATELOGS [d|w|m]

Rotate the log files (ie. create a new one) every day ('d'), week ('w') or month ('m'). If not present then one continuous file is created.

LOGON-NT [domain]

Requires all account/passwords to be verified by the NT security controller (in the specified domain or computer). The account running the process should have "Act as part of the operating system" and (possibly) "Log on batch" privileges.

ACCOUNTS filename

This file lists the accounts and their MD5 password hashes. Do not manually edit this program, instead use the 'passwd' program...
passwd -a userid password            # to add a user

passwd userid password            # to validate a user

passwd -r userid            # to remove a user

NOTE: this program is for supervisor use only.

ALIASES filename

This file lists the userid/account aliases and is here primarily for backwards compatability with Unix Sendmail. It is recommended NOT to use spaces after commas (for backwards compatability) to separate list of addresses. WARNING: aliases are domain insensitive: that is...
info: me@here
will map both 'info@domain1' AND 'info@domain2' to 'me@here'.

VIRTUSERTABLE filename

This file can be used to map aliases at the user and/or domain level.

For example:

@infradig.com adavison@ozemail.com.au
... will map all addresses in the 'infradig.com' domain to my ISP account.
info@domain1 u101
info@domain2 u102
... will map the two 'info' accounts for different domains to something else.

Virtual user entries can be usefull in conjunction with the HTTP and FTP servers to map the same user name in different domains to separate accounts. For example, above, a URL reference of...

http://domain1/~info
will map to the personal web-site of user 'u101' and a URL of...
http://domain2/~info
to 'u102'.

INCLUDE filename

Source config information from named file. For example...
	INCLUDE "../data/domain1.conf"
Provides a means to logically partition the config files.

SYMBOL name value

Set the value for a specific symbol. For example... SYMBOL 127.0.0.1 localhost

PASSTHRU ip-address

Specify the IP address or IP mask of a machine that is allowed to bypass connection limits. This command can be specified multiple times. A wild-card can be used, for example...
	PASSTHRU 10.*
	PASSTHRU 192.168.*

Usefull mainly with FTP connections to allow local users into a busy system.

STARTTLS 0|1

Allow protocol to switch to secure SSL/TLS mode with co-operating clients/servers.

LDAP_HOST hostname

Name of the LDAP server to use for directory services (if not present LDAP is not used).

LDAP_PORT port

Number of the LDAP port to connect to (default is 389).

LDAP_BIND_DN dn

LDAP bind DN to use (default is blank).

LDAP_BIND_PASSWORD password

LDAP bind password to use (default is blank).

LDAP_EMAIL_ATTRIB attributename

Name of the LDAP attribute that holds the account email address (default is 'mail').

LDAP_PASSWORD_ATTRIB attributename

Name of the LDAP attribute that holds the account password (default is 'userPassword'). If adding a custom attribute under MS Exhange you may need to use a name here like 'extension-attribute-1', unless you can figure out how to give things real names.

LDAP_STORAGE_ATTRIB attributename

Name of the LDAP attribute that holds the account storage area (default is 'mailMessageStore').

LDAP_FORWARD_ATTRIB attributename

Name of the LDAP attribute that holds the account forward address (default is 'mailForwardingAddress').

LDAP_ALTERNATE_ATTRIB attributename

Name of the LDAP attribute that holds the account alternate (alias) address (default is 'mailAlternateAddress').

LDAP_REFERRAL_ATTRIB attributename

Name of the LDAP attribute that holds the account referral address (default is 'mailReferralAddress').