-G

Indicates that the message being submitted from the command line is for relaying, not for initial submission. The message is rejected if the addresses are not fully qualified. No canonicalization is done. As noted in the RELEASE NOTES that are part of the sendmail distribution available from ftp://ftp.sendmail.org, improperly formed messages might be rejected in future releases.

-L tag

Sets the identifier used for syslog messages to the supplied tag.

-U

As noted in the RELEASE NOTES that are part of the sendmail distribution available from ftp://ftp.sendmail.org, this option is deprecated. Mail user agents should begin using the -G argument to indicate that this is a relay submission (the inverse of the -U argument).

O OptionName=argument          # for the configuration file
-OOptionName=argument          # for the command line
define(`m4Name',argument)     # for m4 configuration

ClientPortOption

For details, see New ClientPortOptions Option.

ControlSocketName

m4 name: confCONTROL_SOCKET_NAME

Argument: filename. The recommended socket name is /var/spool/mqueue/.smcontrol. For security, this UNIX® domain socket must be in a directory that is accessible only by root.

When set, this new option creates a control socket for daemon management. This option allows an external program to control and query the status of the running sendmail daemon by way of a named socket. The socket is similar to the ctlinnd interface to the INN news server. If not set, no control socket is available.

DaemonPortOptions

For details, see Changes to DaemonPortOptions Option.

DataFileBufferSize

m4 name: confDF_BUFFER_SIZE

Argument: number

The new option controls the maximum size (in bytes) of a memory-buffered data (df) file before a disk-based file is used. The default is 4096 bytes. No changes should be necessary for the Solaris operating environment.

DeadLetterDrop

m4 name: confDEAD_LETTER_DROP

Argument: filename

This new option, which you should not need to set, defines the location of the system-wide dead.letter file, formerly hard-coded to /usr/tmp/dead.letter.

DontBlameSendmail

A new argument called, NonRootSafeAddr, has been added.

When sendmail does not have enough privileges to run a .forward program or deliver to a file as the owner of that file, addresses are marked unsafe. Furthermore, if RunAsUser is set, users cannot use programs or deliver to files in their .forward programs. To resolve these problems, use the new argument, NonRootSafeAddr.

DontProbeInterfaces

m4 name: confDONT_PROBE_INTERFACES

Argument: true or false. The default is false.

If it is set, sendmail does not insert the names and addresses of any local interfaces into class w ($=w). Therefore, you must also include some support for these addresses (for example, in a mailertable entry). Otherwise, mail to these interface addresses bounces with a configuration error. However, this option, when it is set, speeds up your startup.

LDAPDefaultSpec

m4 name: confLDAP_DEFAULT_SPEC

Argument: Class switch with appropriate definition (for example, -hhost, -pport, -dbind DN).

The new option allows a default map specification for LDAP maps. The assigned default settings are used for all LDAP maps unless other individual map specifications are made with the K command. Set this option before defining any LDAP maps.

MaxAliasRecursion

m4 name: confMAX_ALIAS_RECURSION

Argument: number

The option specifies the maximum depth of alias recursion. The defaults are as follows.

50 for a V1/Sun configuration file, which is not recommended for use




10 for any other version of the configuration file

MaxHeadersLength

m4 name: confMAX_HEADERS_LENGTH

Argument: number

The option specifies a maximum length for the sum of all headers and can be used to prevent a denial-of-service attack. The default is 32768. Note that a warning is issued if a value less than 16384 is used. You should not need to change the default value for the Solaris operating environment.  

MaxMimeHeaderLength

m4 name: confMAX_MIME_HEADER_LENGTH

Argument: number

The option sets the maximum length of certain MIME header field values to x number of characters. Also, for parameters within headers, you can specify a maximum length of y. The combined values look like x/y. If /y is not specified, half of x is used. If no values are set, the default is 0, which means no checks are made. This option is intended to protect mail user agents from buffer-overflow attacks. The suggested values are in the range of 256/128 to 1024/256. A warning is issued if values less than 128/40 are used.

MaxRecipientsPerMessage

Argument: number

If it is set, this option allows no more than the specified number of recipients in an SMTP envelope. The minimum argument is 100. This option can still be declared from both the command line and the configuration file. However, normal users can now set it from the command line to allow the override of messages submitted through sendmail -bs. In this instance, sendmail does not relinquish its root privileges.

PidFile

m4 name: confPID_file

Argument: See Additional Arguments for the PidFile and ProcessTitlePrefix Options.

The new option defines the location of the pid file. The file name is macro-expanded before it is opened. The default is /var/run/sendmail.pid.

PrivacyOptions

For details, see Changes to the PrivacyOptions Option.

ProcessTitlePrefix

m4 name: confPROCESS_TITLE_PREFIX

Argument: See Additional Arguments for the PidFile and ProcessTitlePrefix Options.

The new option specifies a prefix string for the process title that is shown in /usr/ucb/ps auxww listings. The string is macro-processed. No changes should be necessary for the Solaris operating environment.

QueueLA

m4 name: confQUEUE_LA

Argument: number

The default value has changed from eight to eight times the number of processors online when the system starts. For single-processor machines, this change has no effect. Changing this value overrides the default and prevents the number of processors from being considered. Therefore, the effect of any value changes should be well understood. 

QueueSortOrder

m4 name: confQUEUE_SORT_ORDER

The host argument now reverses the host name before sorting, which means domains are grouped to run through the queue together. This improvement provides better opportunities for use of the connection cache, if available.

The new filename argument sorts the queue by file name, which avoids the opening and reading of each queue file when preparing to run the queue.

RefuseLA

m4 name: confREFUSE_LA

Argument: number

The default value has changed from 12 to 12 times the number of processors online when the system starts. For single-processor machines, this change has no effect. A change of this value overrides the default and prevents the number of processors from being considered. Therefore, the effect of any value changes should be well understood. 

RrtImpliesDsn

m4 name: confRRT_IMPLIES_DSN

Argument: true or false

If the new option is set, a “Return-Receipt-To:” header causes the request of a delivery status notification (DSN), which is sent to the envelope sender, not to the address given in the header. 

SendMimeErrors

m4 name: confMIME_FORMAT_ERRORS

Argument: true or false

The default is now true.

Timeout

For details, see Changes to the Timeout Option.

TrustedUser

m4 name: confTRUSTED_USER

Argument: user name or user numeric ID

The new option allows you to specify a user name (instead of root) to own important files. If this option is set, generated alias databases and the control socket—if it is configured—are automatically owned by this user. This option requires HASFCHOWN. For information about HASFCHOWN, see New Compile Flags for sendmail.

Only TrustedUser, root, and class t ($=t) users can rebuild the alias map.

XscriptFileBufferSize

m4 name: confXF_BUFFER_SIZE

Argument: number

The new option controls the maximum size (in bytes) of a memory-buffered transcript (xf) file before a disk-based file is used. The default is 4096 bytes. No changes should be necessary for the Solaris operating environment.

AutoRebuildAliases

Because a denial-of-service attack could occur if this option is set, it has been deprecated. Refer to the RELEASE NOTES that are part of the sendmail distribution available from ftp://ftp.sendmail.org. A user could kill the sendmail process while the aliases file is being rebuilt and leave the file in an inconsistent state.

MeToo

This option, which now defaults to True, has been deprecated. Refer to the RELEASE NOTES that are part of the sendmail distribution available from ftp://ftp.sendmail.org.

O ClientPortOptions=pair,pair              # for the configuration file
-OClientPortOptions=pair,pair              # for the command line
define(`confCLIENT_OPTIONS',`pair,pair')   # note the revised name 
                                         # for m4 configuration

Addr

Specifies the address mask. The value can be a numeric address in dot notation or a network name. If the pair is omitted, the default is INADDR_ANY, which allows connections from any network.

Family

Specifies the address family. The key's default is inet for AF_INET. Other values are inet6 for AF_INET6, iso for AF_ISO, ns for AF_NS, and x.25 for AF_CCITT.

Listen

Specifies the size of the listen queue. The key defaults to 10. No changes should be necessary for the Solaris operating environment. 

Port

Specifies the name and number of the listening port. The key defaults to smtp.

RcvBufSize

Specifies the size of the TCP/IP send buffer. The key has no default value, which means that no size specifications are automatically made. If the option is set to a value greater than zero, then that value is used. You should not need to limit the size of this buffer for the Solaris operating environment. 

Modifier

Specifies flags for sendmail. The flag, h, uses the name that corresponds to the outgoing interface address for the HELO or EHLO commands, whether it was chosen by the connection parameter or by the default.

O DaemonPortOptions=pair,pair              # for the configuration file
-ODaemonPortOptions=pair,pair              # for the command line
define(`confDAEMON_OPTIONS',`pair,pair')   # note the revised name 
                                         # for m4 configuration

Name

Specifies a user-definable name for sendmail and is used for error messages and for logging. The default is MTA.

Modifier

Specifies values for sendmail that can be listed in a sequence without delimiters. For a list of values, see Table 21–6.

C

Does not perform host name canonification. 

E

Disallows the ETRN command.

a

Requires authentication. 

b

Binds to the interface that receives the mail. 

c

Performs host name canonification. Use this value only in configuration file declarations. 

f

Requires fully qualified host names. Use this value only in configuration file declarations. 

h

Uses the interface's name for the outgoing HELO command.

u

Allows unqualified addresses. Use this value only in configuration file declarations. 

${daemon_addr}

Provides daemon address (for example, 0.0.0.0) 

${daemon_family}

Provides daemon family (for example, inet, inet6, and so forth) 

${daemon_info}

Provides daemon information (for example, SMTP+queueing@00:30:00) 

${daemon_name}

Provides daemon name (for example, MSA) 

${daemon_port}

Provides daemon port (for example, 25) 

${queue_interval}

Provides queue run interval (for example, 00:30:00) 

O PrivacyOptions=argument                # for the configuration file
-OPrivacyOptions=argument                # for the command line
define(`confPRIVACY_FLAGS',`argument')   # note the revised name 
                                           # for m4 configuration

goaway

The noetrn and noreceipts flags are no longer accepted.

nobodyreturn

The argument instructs sendmail not to include the body of the original message in delivery status notifications.

noreceipts

When the argument is set, delivery status notification (DSN) is not announced. 

O Timeout.keyword=value   # for the configuration file
-OTimeout.keyword=value   # for the command line
define(`m4_name', value) # for m4 configuration
            

control

2m

m4 name: confTO_CONTROL

Limits the total time that is dedicated to satisfying a control socket request. 

ident

5s

m4 name: confTO_IDENT

Defaults to 5 seconds—instead of 30 seconds—to prevent the common delays that are associated with mailing to a site that drops IDENT packets. 

queuereturn

5d

m4 name: confTO_QUEUERETURN

Includes the value now, which immediately bounces entries from the queue without a delivery attempt.

resolver.retrans

varies

m4 name: confTO_RESOLVER_RETRANS

Sets the resolver's retransmission time interval (in seconds), which applies to resolver.retrans.first and resolver.retrans.normal.

resolver.retrans.first

varies

m4 name: confTO_RESOLVER_RETRANS_FIRST

Sets the resolver's retransmission time interval (in seconds) for the first attempt to deliver a message. 

resolver.retrans.normal

varies

m4 name: confTO_RESOLVER_RETRANS_NORMAL

Sets the resolver's retransmission time interval (in seconds) for all resolver lookups, except the first delivery attempt. 

resolver.retry

varies

m4 name: confTO_RESOLVER_RETRY

Sets the number of times to retransmit a resolver query, which applies to Timeout.resolver.retry.first and Timeout.resolver.retry.normal.

resolver.retry.first

varies

m4 name: confTO_RESOLVER_RETRY_FIRST

Sets the number of times to retransmit a resolver query for the first attempt to deliver a message. 

resolver.retry.normal

varies

m4 name: confTO_RESOLVER_RETRY_NORMAL

Sets the number of times to retransmit a resolver query for all resolver lookups, except the first delivery attempt. 

${auth_authen}, ${auth_type}, ${auth_author}

Holds the client's authentication credentials, the mechanism used for authentication, and the authorization identity—the AUTH= parameter, if supplied.

${client_resolve}

Holds the result of the resolve call for ${client_name}: OK, FAIL, FORGED, or TEMP.

${deliveryMode}

Specifies the current delivery mode sendmail is using, instead of the value of the DeliveryMode option.

${dsn_notify}, ${dsn_envid}, ${dsn_ret}

Holds the corresponding DSN parameter values. 

${if_addr}

Provides the interface's address for the incoming connection if the interface does not belong to the loopback net. Is especially useful for virtual hosting. 

${if_name}

Provides the interface's host name for the incoming connection and is especially useful for virtual hosting.  

${load_avg}

Checks and reports the current average number of jobs in the run queue. 

${msg_size}

Holds the value of the message size (SIZE=parameter) in an ESMTP dialogue before the message has been collected. Thereafter, the macro holds the message size as computed by sendmail and is used in check_compat.

${ntries}

Holds the number of delivery attempts. 

${rcpt_mailer}, ${rcpt_host}, ${rcpt_addr}, ${mail_mailer}, ${mail_host}, ${mail_addr}

Holds the results of parsing the RCPT and MAIL arguments—that is, the resolved RHS triplet from the mail delivery agent ($#mailer), the host ($@host), and the user ($:addr).

LOCAL_MAILER_EOL

Overrides the default end-of-line string for the local mailer. 

LOCAL_MAILER_FLAGS

Adds Return-Path: header by default.

MAIL_SETTINGS_DIR

Contains the path (including the trailing slash) for the mail settings directory. 

MODIFY_MAILER_FLAGS

Improves the *_MAILER_FLAGS. This macro sets, adds, or deletes flags.

RELAY_MAILER_FLAGS

Defines additional flags for the relay mailer. 

USENET_MAILER_FLAGS

Is not a local mailer. Therefore, the l flag has been removed.

symbolic_name(`value')

FEATURE() declarations

For details, refer to New and Revised FEATURE() Declarations.

LOCAL_DOMAIN()

This macro adds entries to class w ($=w).

MASQUERADE_EXCEPTION()

A new macro that defines hosts or subdomains that cannot be masqueraded. 

SMART_HOST()

You can now use this macro for bracketed addresses, such as user@[host].

TRUST_AUTH_MECH()

If SMTP AUTH is used, then relaying is allowed for any user who is authenticated as a "trusted" mechanism. This means the mechanism has been defined in the TRUST_AUTH_MECH(`list_of_mechanisms') declaration.

VIRTUSER_DOMAIN() or VIRTUSER_DOMAIN_FILE()

When these macros are used, include $={VirtHost} in $=R. As a reminder, $=R is the set of host names that are allowed to relay.

FEATURE(`key_word', `argument')

delay_checks

Argument: friend, which enables a spam-friend test, or hater, which enables spam-hater test.

A new keyword that delays all checks. By using FEATURE(`delay_checks'), the rule sets check_mail and check_relay are not called when a client connects or issues a MAIL command, respectively. Instead, these rule sets are called by the check_rcpt rule set. For details, refer to the /usr/lib/mail/README file.

dnsbl

A new keyword that accepts up to two arguments:

DNS server name




Rejection message

You can include this keyword multiple times. 

generics_entire_domain

Argument: None 

A new keyword that you can also use to apply genericstable to subdomains of $=G.

ldap_routing

Argument: For details, refer to the LDAP ROUTING section in /usr/lib/mail/README.

A new keyword that implements LDAP address routing.  

local_lmtp

Argument: Path name of an LMTP-capable mailer. The default is mail.local, which is LMTP-capable in this Solaris release.

A keyword that now sets the delivery status notification (DSN) diagnostic-code type for the local mailer to the proper value of SMTP.

nocanonify

Argument: canonify_hosts or nothing

A keyword that now includes the following features. 

Permits a list of domains, as specified by CANONIFY_DOMAIN or CANONIFY_DOMAIN_FILE, to be passed to the $[ and $] operators for canonification.

Permits addresses that have only a host name, such as <user@host>, to be canonified, if canonify_hosts is specified as its parameter.

Adds a trailing dot to addresses with more than one component. 

no_default_msa

Argument: None 

A new keyword that turns off sendmail's default setting from m4–generated configuration files to listen on several different ports, an implementation of RFC 2476.

nouucp

Argument: reject, which does not allow the ! token, or nospecial, which does allow the ! token.

A keyword that determines whether or not to allow the ! token in the local part of an address.

nullclient

Argument: None 

A keyword that now provides the full rule sets of a normal configuration, allowing anti-spam checks to be performed. 

relay_mail_from

Argument: The domain is an optional argument.

A new keyword that allows relaying if the mail sender is listed as a RELAY in the access map and is tagged with the From: header line. If the optional domain argument is given, the domain portion of the mail sender is also checked.

virtuser_entire_domain

Argument: None 

A keyword that you can now use to apply $={VirtHost}, a new class for matching virtusertable entries that can be populated by VIRTUSER_DOMAIN or VIRTUSER_DOMAIN_FILE.

FEATURE(`virtuser_entire_domain') can also apply the class $={VirtHost} to entire subdomains.

MAILER(`symbolic_name')

HASFCHOWN

Supports the use of fchown(2).

HASRANDOM

Supports the use of rand(3C), instead of random(3C).

MAXINTERFACES

Indicates the number of interfaces to read when sendmail probes for host names and IP addresses for class w ($=w). The default value is 512.

Mlocal,    P=/usr/lib/mail.local, F=lsDFMAw5:/|@qSXfmnz9, S=10/30, R=20/40,
Mprog,     P=/bin/sh, F=lsDFMoqeu9, S=10/30, R=20/40, D=$z:/,
Msmtp,     P=[IPC], F=mDFMuX, S=11/31, R=21, E=\r\n, L=990,
Mesmtp,    P=[IPC], F=mDFMuXa, S=11/31, R=21, E=\r\n, L=990,
Msmtp8,    P=[IPC], F=mDFMuX8, S=11/31, R=21, E=\r\n, L=990,
Mrelay,    P=[IPC], F=mDFMuXa8, S=11/31, R=61, E=\r\n, L=2040,

%

Mailers that use this flag do not attempt delivery to the initial recipient of a message or to queue runs unless the queued message is selected by using an ETRN request or one of the following queue options: -qI, -qR, or -qS.

6

This flag allows mailers to strip headers to seven bit. 

Magent_name, equate, equate, ...

Msmtp, P=[IPC], F=mDFMuX, S=11/31, R=21, E=\r\n, L=990, W=2m

define(`SMTP_MAILER_MAXMSGS', `1000')

/=

Argument: Path to a directory 

Specifies a directory to chroot() into before the mailer program is executed.

m=

Argument: Any of the following m4 values that have previously been defined with the define() routine.

SMTP_MAILER_MAXMSGS, for the smtp mailer




LOCAL_MAILER_MAXMSGS, for the local mailer




RELAY_MAILER_MAXMSGS, for the relay mailer

Limits the number of messages that are delivered per connection on an smtp, local, or relay mailer.

W=

Argument: An increment of time 

Specifies the maximum time to wait for the return of the mailer after all data has been sent. 

-1

Requires a single match to be returned. If more than one match is returned, the results are the equivalent of no records being found. 

-r never|always|search|find

Sets the LDAP alias dereference option. 

-Z size

Limits the number of matches to return. 

Mexecmail, P=[IPC], F=lsDFMmnqSXzA5@/:|, E=\r\n, 
S=10, R=20/40, T=DNS/RFC822/X-Unix, A=FILE /var/run/lmtpd

A=FILE

Used for UNIX domain socket delivery 

A=TCP

Used for TCP/IP connections 

A=IPC

Scheduled for deprecation in a future version 

check_eoh

Correlates information that is gathered between headers and checks for missing headers. This rule set is used with the macro storage map and is called after all of the headers have been collected.  

check_etrn

Uses the ETRN command (such as check_rcpt uses RCPT).

check_expn

Uses the EXPN command (such as check_rcpt uses RCPT).

check_vrfy

Uses the VRFY command (such as check_rcpt uses RCPT).

trust_auth

Determines whether a given AUTH= parameter of the MAIL command should be trusted.

-7

Prevents the local mail transfer protocol (LMTP) mode from advertising 8BITMIME support in the LHLO response

-b

Causes a permanent error instead of a temporary error if a mailbox exceeds its quota 

MODIFY_MAILER_FLAGS(`LOCAL', `+S')      # for the configuration file

define(`MODIFY_MAILER_FLAGS', `S')dnl   # first step
MAILER(local)dnl                        # second step

-C filename

Specifies a sendmail configuration file

-p

Provides clear statistics in a program-readable mode 

makemap options class filename

-C

Uses the specified sendmail configuration file for finding the TrustedUser option

-c

Uses the specified hash and btree cache size

-e

Allows an empty value from the right-hand side (RHS) 

-l

Lists supported map types 

-u

Dumps (unmaps) the contents of the database to standard output