112580Speterdivert(-1)
212580Speter#
312580Speter# Copyright (c) 1983 Eric P. Allman
412580Speter# Copyright (c) 1988, 1993
512580Speter#	The Regents of the University of California.  All rights reserved.
612580Speter#
712580Speter# Redistribution and use in source and binary forms, with or without
812580Speter# modification, are permitted provided that the following conditions
912580Speter# are met:
1012580Speter# 1. Redistributions of source code must retain the above copyright
1112580Speter#    notice, this list of conditions and the following disclaimer.
1212580Speter# 2. Redistributions in binary form must reproduce the above copyright
1312580Speter#    notice, this list of conditions and the following disclaimer in the
1412580Speter#    documentation and/or other materials provided with the distribution.
1512580Speter# 3. All advertising materials mentioning features or use of this software
1612580Speter#    must display the following acknowledgement:
1712580Speter#	This product includes software developed by the University of
1812580Speter#	California, Berkeley and its contributors.
1912580Speter# 4. Neither the name of the University nor the names of its contributors
2012580Speter#    may be used to endorse or promote products derived from this software
2112580Speter#    without specific prior written permission.
2212580Speter#
2312580Speter# THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
2412580Speter# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
2512580Speter# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
2612580Speter# ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
2712580Speter# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
2812580Speter# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
2912580Speter# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
3012580Speter# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
3112580Speter# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
3212580Speter# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
3312580Speter# SUCH DAMAGE.
3412580Speter#
3512580Speter
3612580Speter#
37203005Sgshapiro#  This is a generic configuration file for FreeBSD 6.X and later systems.
3842585Speter#  If you want to customize it, copy it to a name appropriate for your
3942585Speter#  environment and do the modifications there.
4012580Speter#
4142585Speter#  The best documentation for this .mc file is:
4272842Sgshapiro#  /usr/share/sendmail/cf/README or
4342585Speter#  /usr/src/contrib/sendmail/cf/README
44249732Sgshapiro# 
45256982Sjmg#
46256982Sjmg#  NOTE: If you enable RunAsUser, make sure that you adjust the permissions
47256982Sjmg#  and owner of the SSL certificates and keys in /etc/mail/certs to be usable
48256982Sjmg#  by that user.
49256982Sjmg#
5012580Speter
5172842Sgshapirodivert(0)
5250958SpeterVERSIONID(`$FreeBSD$')
53147357SgshapiroOSTYPE(freebsd6)
5472842SgshapiroDOMAIN(generic)
5572842Sgshapiro
5690801SgshapiroFEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
5772842SgshapiroFEATURE(blacklist_recipients)
5872842SgshapiroFEATURE(local_lmtp)
5972842SgshapiroFEATURE(mailertable, `hash -o /etc/mail/mailertable')
6072842SgshapiroFEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
6172842Sgshapiro
62256982Sjmgdnl Enable STARTTLS for receiving email.
63256982Sjmgdefine(`CERT_DIR', `/etc/mail/certs')dnl
64256982Sjmgdefine(`confSERVER_CERT', `CERT_DIR/host.cert')dnl
65256982Sjmgdefine(`confSERVER_KEY', `CERT_DIR/host.key')dnl
66256982Sjmgdefine(`confCLIENT_CERT', `CERT_DIR/host.cert')dnl
67256982Sjmgdefine(`confCLIENT_KEY', `CERT_DIR/host.key')dnl
68256982Sjmgdefine(`confCACERT', `CERT_DIR/cacert.pem')dnl
69256982Sjmgdefine(`confCACERT_PATH', `CERT_DIR')dnl
70256982Sjmgdefine(`confDH_PARAMETERS', `CERT_DIR/dh.param')dnl
71256982Sjmg
7290811Sgshapirodnl Uncomment to allow relaying based on your MX records.
7390811Sgshapirodnl NOTE: This can allow sites to use your server as a backup MX without
7490811Sgshapirodnl       your permission.
7590811Sgshapirodnl FEATURE(relay_based_on_MX)
7690811Sgshapiro
7792933Sgshapirodnl DNS based black hole lists
7892933Sgshapirodnl --------------------------------
7993231Sgshapirodnl DNS based black hole lists come and go on a regular basis
8093231Sgshapirodnl so this file will not serve as a database of the available servers.
81244835Sgshapirodnl For more information, visit
82244835Sgshapirodnl http://en.wikipedia.org/wiki/DNSBL
8392933Sgshapiro
84223068Sgshapirodnl Uncomment to activate your chosen DNS based blacklist
85223068Sgshapirodnl FEATURE(dnsbl, `dnsbl.example.com')
8692933Sgshapirodnl Alternatively, you can provide your own server and rejection message:
87244830Sgshapirodnl FEATURE(dnsbl, `dnsbl.example.com', ``"550 Mail from " $&{client_addr} " rejected"'')
8872842Sgshapiro
8951616Sjmbdnl Dialup users should uncomment and define this appropriately
9072842Sgshapirodnl define(`SMART_HOST', `your.isp.mail.server')
9172842Sgshapiro
9264622Sgshapirodnl Uncomment the first line to change the location of the default
9364622Sgshapirodnl /etc/mail/local-host-names and comment out the second line.
9472842Sgshapirodnl define(`confCW_FILE', `-o /etc/mail/sendmail.cw')
9572842Sgshapirodefine(`confCW_FILE', `-o /etc/mail/local-host-names')
9672842Sgshapiro
97123820Sgshapirodnl Enable for both IPv4 and IPv6 (optional)
98123820SgshapiroDAEMON_OPTIONS(`Name=IPv4, Family=inet')
99123820SgshapiroDAEMON_OPTIONS(`Name=IPv6, Family=inet6, Modifiers=O')
10073303Sgshapiro
10197029Sgshapirodefine(`confBIND_OPTS', `WorkAroundBrokenAAAA')
10272842Sgshapirodefine(`confNO_RCPT_ACTION', `add-to-undisclosed')
10372842Sgshapirodefine(`confPRIVACY_FLAGS', `authwarnings,noexpn,novrfy')
10472842SgshapiroMAILER(local)
10572842SgshapiroMAILER(smtp)
106