.\" Hey, EMACS: -*- nroff -*- .\" First parameter, NAME, should be all caps .\" Second parameter, SECTION, should be 1-8, maybe w/ subsection .\" other parameters are allowed: see man(7), man(1) .TH POLICYD-SPF-FS 8 "2007-09-05" .\" Please adjust this date whenever revising the manpage. .\" .\" Some roff macros, for reference: .\" .nh disable hyphenation .\" .hy enable hyphenation .\" .ad l left justify .\" .ad b justify to both left and right margins .\" .nf disable filling .\" .fi enable filling .\" .br insert line break .\" .sp insert n+1 empty lines .\" for manpage-specific macros, see man(7) .SH NAME policyd\-spf\-fs \(em SPF policy daemon for the Postfix MTA . .SH SYNOPSIS .HP In master.cf: .nf spf\-policy unix \- n n \- \- spawn user=nobody argv=/usr/sbin/policyd\-spf\-fs [\fIoptions\fP] .fi .SH DESCRIPTION This manual page documents briefly the \fBpolicyd\-spf\-fs\fR command. It was written for the Debian\*[R] distribution because the original program initially didn't have a manual page (it does now, but the maintainer feels that this one is a little better). .PP \fBpolicyd\-spf\-fs\fR performs Sender Policy Framework (SPF) authorization checks based on queries sent to it on standard input following a special protocol. For more information on this protocol see the Postfix documentation in the postfix-doc package. For information on SPF see http://www.openspf.org. .SH OPTIONS This programs follows the GNU \fBgetopt_long_only\fR(3) command line syntax: Long options can be given with one or two dashes and can be abbreviated to a prefix long enough to be non-ambiguous. If an option starting with a single dash doesn't match a long option, it is taken as a short option with a following parameter, if applicable. An equals sign between the option name and the parameter is optional for both short and long options. .TP \fB\-d\fP, \fB\-\-debug\fP [\fIlevel\fP] Turn on debugging output. A \fIlevel\fP of 3 or higher is passed to libspf2 (as \fIlevel\fP-2). Level 1 and 2 is only used by the daemon itself. .TP \fB\-l\fP, \fB\-\-local\fP \fIspf\-terms\fP Test against \fIspf\-terms\fR before the final (implicit or explicit) \(lqall\(rq in an SPF record. This can be used to implement a local policy for whitelisting. .TP \fB\-t, \fB\-\-trusted\fR [\fB1\fR] Check the sender domain with trusted\-forwarder.org. \fBThis is a non\-standard feature.\fR .TP \fB\-t\fP \fB0\fP, \fB\-\-trusted\fR \fB0\fP Do not check the sender domain with trusted\-forwarder.org. This is the default. .TP \fB\-g\fP, \fB\-\-guess\fP \fIspf-mechanisms\fP Test the sender domain against \fIspf\-mechanisms\fP if the domain has no SPF record. .TP \fB\-e\fP, \fB\-\-default\-explanation\fP \fIstring\fP Default explanation string to use if the SPF record does not specify an expla\%nation string itself. .TP \fB\-m\fP, \fB\-\-max\-lookup\fP \fInumber\fP Maximum number of DNS lookups to allow. .TP \fB\-c\fP, \fB\-\-sanitize\fP [\fB0\fP|\fB1\fP] Do [not] sanitize the output by condensing conse\%cutive white\%space into a single space and replacing non-printable characters with question marks. Enabled by default. .TP \fB\-n\fP, \fB\-\-name\fP \fIhostname\fP Use \fIhostname\fP as the name of the local system instead of looking it up (the name is used in the output). .TP \fB\-a\fP, \fB\-\-override\fP \fI...\fP .TP \fB\-z\fP, \fB\-\-fallback\fP \fI...\fP Provide override and fallback SPF records for certain domains. \fBNot implemented yet.\fP \fBpolicyd\-spf\-fs\fP would act as if the speci\%fied records were present before and after any existing record, respectively, of those domains. .TP \fB\-\-help\fP Show summary of options. .TP \fB\-v\fP, \fB\-\-version\fP Show version of program. .SH SEE ALSO .BR spfquery (1), .BR master (5), RFC 4408, /usr/share/doc/postfix/SMTPD_POLICY_README.gz .SH BUGS Yes, this program is an early development stage. Among other things, several of the spfquery options are semi-recognized, which may give confusing results. .SH AUTHOR \fBpolicyd\-spf\-fs\fP was written by Matthias Cramer. .PP This manual page was written by Magnus Holmgren for the Debian\*[R] system (but may be used by others), based on the manpage for \fBspfquery\fP(1), which was in turn heavily inspired by the spfquery manpage of libmail\-spf\-query\-perl (\fBspfquery.mail\-spf\-query\-perl\fR(1)) by Julian Mehnle. .SH COPYRIGHT Copyright \(co 2007 Magnus Holmgren. Permission is granted to copy, distribute and/or modify this document under the terms of the BSD License. .PP On Debian systems, the complete text of the BSD License can be found in /usr/share/common\-licenses/BSD.