1sendmail(1M)            System Administration Commands            sendmail(1M)
2
3
4

NAME

6       sendmail - send mail over the internet
7

SYNOPSIS

9       /usr/lib/sendmail [-Ac] [-Am] [-ba] [-bD] [-bd] [-bi] [-bl]
10            [-bm] [-bp] [-bP] [-bs] [-bt] [-bv] [-B type] [-C file]
11            [-D logfile] [-d X] [-F fullname] [-f name] [-G]
12            [-h N] [-L tag] [-M xvalue] [-N notifications] [-n]
13            [-Ooption =value] [-o xvalue] [-p protocol]
14            [-Q [reason]] [-q [time]] [-q Xstring] [-R ret]
15            [-r name] [-t] [-V envid] [-v] [-X logfile]
16            [address]...
17
18

DESCRIPTION

20       The sendmail utility sends a message to one or more people, routing the
21       message over whatever networks are necessary. sendmail  does  internet‐
22       work  forwarding  as  necessary  to  deliver the message to the correct
23       place.
24
25
26       sendmail is not intended as a user interface  routine.  Other  programs
27       provide user-friendly front ends. sendmail is used only to deliver pre-
28       formatted messages.
29
30
31       With no flags, sendmail reads its standard input up to  an  EOF,  or  a
32       line  with  a single dot, and sends a copy of the letter found there to
33       all of the addresses listed. It determines the network to use based  on
34       the syntax and contents of the addresses.
35
36
37       Local  addresses  are  looked  up in the local aliases(4) file, or in a
38       name service as defined  by  the  nsswitch.conf(4)  file,  and  aliased
39       appropriately.  In  addition,  if there is a .forward file in a recipi‐
40       ent's home directory, sendmail forwards a copy of each message  to  the
41       list  of  recipients that file contains. Refer to the NOTES section for
42       more information about .forward files. Aliasing  can  be  prevented  by
43       preceding the address with a backslash.
44
45
46       There  are  several conditions under which the expected behavior is for
47       the alias database to be either built or  rebuilt.  This  cannot  occur
48       under  any  circumstances unless root owns and has exclusive write per‐
49       mission to the /etc/mail/aliases* files.
50
51
52       If a message is found to be undeliverable, it is returned to the sender
53       with  diagnostics that indicate the location and nature of the failure;
54       or, the message is placed in a dead.letter file in  the  sender's  home
55       directory.
56
57   Service Management
58       The  sendmail  service  is  managed by the service management facility,
59       smf(5), under the service identifiers:
60
61         svc:/network/smtp:sendmail
62         svc:/network/sendmail-client:default
63
64
65
66
67
68       Administrative actions on these services, such as enabling,  disabling,
69       or requesting restart, can be performed using svcadm(1M). The services'
70       status can be queried using the svcs(1) command.
71
72
73       These are separate services rather than instances of the  same  service
74       so  that  other services can properly express any dependencies. In par‐
75       ticular, here are some guidelines about which  service/instance  should
76       be depended on for which purposes:
77
78           o      For  a  service that uses sendmail to send mail, an optional
79                  dependency on the service svc:/network/sendmail-client might
80                  be in order.
81
82           o      For  a  service  that  needs to receive mail in general, but
83                  does not  depend  on  sendmail  being  the  particular  SMTP
84                  receiver,  a  dependency  on  the  service svc:/network/smtp
85                  might be in order.
86
87           o      For a service that needs to interact with sendmail  in  par‐
88                  ticular,  such  as  a  Milter,  a dependency on the instance
89                  svc:/network/smtp:sendmail might be in order.
90
91
92       For the last two, note the difference, as the latter  has  the  ":send‐
93       mail"  instance specification, whereas the former does not, thus repre‐
94       senting the more general service.
95
96   Enabling Access to Remote Clients
97       On an unmodified system,  access  to  sendmail  by  remote  clients  is
98       enabled  and  disabled  through  the  service  management facility (see
99       smf(5)). In particular, remote access is determined by the value of the
100       local_only SMF property:
101
102         svc:/network/smtp:sendmail/config/local_only = true
103
104
105
106       A  setting  of  true,  as  above, disallows remote access; false allows
107       remote access. The default value is true.
108
109
110       The following example shows the sequence of SMF commands used to enable
111       sendmail to allow access to remote systems:
112
113         # svccfg -s svc:/network/smtp:sendmail setprop config/local_only = false
114         # svcadm refresh svc:/network/smtp:sendmail
115         # svcadm restart svc:/network/smtp:sendmail
116
117
118
119
120       See svcadm(1M) and svccfg(1M).
121
122
123       Note, however, on a system where any of the sendmail(4) files have been
124       customized, setting this property might not have the  intended  effect.
125       See sendmail(4) for details.
126
127   Automated Rebuilding of Configuration Files
128       See  sendmail(4)  for details on which service properties can be set to
129       automate (re)building  of  configuration  files  when  the  service  is
130       started.
131
132   Restricting Host Access
133       sendmail  uses  TCP  Wrappers  to restrict access to hosts. It uses the
134       service name of sendmail for hosts_access(). For  more  information  on
135       TCP Wrappers, see tcpd(1M) and hosts_access(4) in the SUNWtcpd package.
136       tcpd(1M) and hosts_access(4) are not part of the Solaris man pages.
137
138   Startup Options
139       The /etc/default/sendmail file stores startup options for  sendmail  so
140       that  the  options  are  not  removed when a host is upgraded. See also
141       sendmail(4) for details on which service properties can be set to auto‐
142       mate (re)building of configuration files when the service is started.
143
144
145       You  can  use  the  following  variables  in  the /etc/default/sendmail
146       startup file:
147
148       CLIENTOPTIONS=string
149
150           Selects additional options to be used with the client daemon, which
151           looks  in  the client-only queue (/var/spool/clientmqueue) and acts
152           as a client queue runner. No syntax checking is done, so be careful
153           when making changes to this variable.
154
155
156       CLIENTQUEUEINTERVAL=#
157
158           Similar  to  the QUEUEINTERVAL option, CLIENTQUEUEINTERVAL sets the
159           time interval for mail queue runs. However, the CLIENTQUEUEINTERVAL
160           option  controls the functions of the client daemon, instead of the
161           functions of the master daemon. Typically,  the  master  daemon  is
162           able to deliver all messages to the SMTP port. However, if the mes‐
163           sage load is too high or the master daemon  is  not  running,  then
164           messages  go  into  the client-only queue, /var/spool/clientmqueue.
165           The client daemon, which checks in the client-only queue, then acts
166           as a client queue processor.
167
168
169       ETRN_HOSTS=string
170
171           Enables  an  SMTP client and server to interact immediately without
172           waiting for the queue run intervals, which are periodic. The server
173           can  immediately  deliver the portion of its queue that goes to the
174           specified hosts. For more information, refer to  the  etrn(1M)  man
175           page.
176
177
178       MODE=-bd
179
180           Selects  the  mode  to  start  sendmail with. Use the -bd option or
181           leave it undefined.
182
183
184       OPTIONS=string
185
186           Selects additional options to be used with the  master  daemon.  No
187           syntax  checking is done, so be careful when making changes to this
188           variable.
189
190
191       QUEUEINTERVAL=#
192
193           Sets the interval for mail queue runs on the master daemon.  #  can
194           be  a  positive integer that is followed by either s for seconds, m
195           for minutes, h for hours, d for days, or w for weeks. The syntax is
196           checked  before sendmail is started. If the interval is negative or
197           if the entry does not end with an appropriate letter, the  interval
198           is ignored and sendmail starts with a queue interval of 15 minutes.
199
200
201       QUEUEOPTIONS=p
202
203           Enables  one  persistent queue runner that sleeps between queue run
204           intervals, instead of a new queue runner for each queue run  inter‐
205           val. You can set this option to p, which is the only setting avail‐
206           able. Otherwise, this option is not set.
207
208
209   Mail Filter API
210       sendmail supports a mail filter API called "milter". For more  informa‐
211       tion, see /usr/include/libmilter/README and http://www.milter.org
212

OPTIONS

214       The following options are supported:
215
216       -Ac
217
218           Uses submit.cf even if the operation mode does not indicate an ini‐
219           tial mail submission.
220
221
222       -Am
223
224           Uses sendmail.cf even if the operation mode  indicates  an  initial
225           mail submission.
226
227
228       -ba
229
230           Goes  into  ARPANET  mode.  All input lines must end with a RETURN-
231           LINEFEED, and all messages are generated with a RETURN-LINEFEED  at
232           the  end.  Also,  the From: and Sender: fields are examined for the
233           name of the sender.
234
235
236       -bd
237
238           Runs as a daemon in the background, waiting for incoming SMTP  con‐
239           nections.
240
241
242       -bD
243
244           Runs  as a daemon in the foreground, waiting for incoming SMTP con‐
245           nections.
246
247
248       -bi
249
250           Initializes the aliases(4) database. Root must own and have  exclu‐
251           sive  write permission to the /etc/mail/aliases* files for success‐
252           ful use of this option.
253
254
255       -bl
256
257           Runs as a daemon (like -bd) but accepts only loopback SMTP  connec‐
258           tions.
259
260
261       -bm
262
263           Delivers mail in the usual way (default).
264
265
266       -bp
267
268           Prints a summary of the mail queues.
269
270
271       -bP
272
273           Prints  the  number  of  entries in the queues. This option is only
274           available with shared memory support.
275
276
277       -bs
278
279           Uses the SMTP protocol as described in RFC 2821. This flag  implies
280           all the operations of the -ba flag that are compatible with SMTP.
281
282
283       -bt
284
285           Runs  in address test mode. This mode reads addresses and shows the
286           steps in parsing; it is used for debugging configuration tables.
287
288
289       -bv
290
291           Verifies names only. Does not try to collect or deliver a  message.
292           Verify mode is normally used for validating users or mailing lists.
293
294
295       -B type
296
297           Indicates body type (7BIT or 8BITMIME).
298
299
300       -C file
301
302           Uses alternate configuration file.
303
304
305       -D logfile
306
307           Send debugging output to the indicated log file instead of stdout.
308
309
310       -d X
311
312           Sets debugging value to X.
313
314
315       -f name
316
317           Sets  the  name  of  the  "from" person (that is, the sender of the
318           mail).
319
320
321       -F fullname
322
323           Sets the full name of the sender.
324
325
326       -G
327
328           When accepting messages by way of the command line, indicates  that
329           they  are  for  relay  (gateway) submission. When this flag is set,
330           sendmail might complain about syntactically invalid  messages,  for
331           example,  unqualified host names, rather than fixing them. sendmail
332           does not do any canonicalization in this mode.
333
334
335       -h N
336
337           Sets the hop count to N. The hop count is  incremented  every  time
338           the  mail  is  processed.  When  it  reaches  a  limit, the mail is
339           returned with an error message, the victim of an aliasing loop.
340
341
342       -L tag
343
344           Sets the identifier used in syslog messages to the supplied tag.
345
346
347       -Mxvalue
348
349           Sets macro x to the specified value.
350
351
352       -n
353
354           Does not do aliasing.
355
356
357       -N notifications
358
359           Tags all addresses being sent as wanting  the  indicated  notifica‐
360           tions, which consists of the word "NEVER" or a comma-separated list
361           of "SUCCESS", "FAILURE", and "DELAY" for successful delivery, fail‐
362           ure and a message that is stuck in a queue somwhere. The default is
363           "FAILURE,DELAY".
364
365
366       -oxvalue
367
368           Sets option x  to  the  specified  value.  Processing  Options  are
369           described below.
370
371
372       -Ooption=value
373
374           Sets  option to the specified value (for long from names). Process‐
375           ing Options are described below.
376
377
378       -p protocol
379
380           Sets the sending protocol. The protocol field can be in form proto‐
381           col:host to set both the sending protocol and the sending host. For
382           example: -pUUCP:uunet sets the sending protocol  to  UUCP  and  the
383           sending  host to uunet. Some existing programs use -oM to set the r
384           and s macros; this is equivalent to using -p.
385
386
387       -q[time]
388
389           Processes saved messages in the queue at given intervals.  If  time
390           is  omitted,  processes  the  queue once. time is given as a tagged
391           number, where s is seconds, m is minutes, h is hours,  d  is  days,
392           and  w  is  weeks. For example, -q1h30m or -q90m would both set the
393           timeout to one hour thirty minutes.
394
395           By default, sendmail runs in the background.  This  option  can  be
396           used safely with -bd.
397
398
399       -qp[time-]
400
401           Similar  to -q[time], except that instead of periodically forking a
402           child to process the queue,  sendmail  forks  a  single  persistent
403           child  for  each queue that alternates between processing the queue
404           and sleeping. The sleep time (time) is specified as  the  argument;
405           it  defaults to 1 second. The process always sleeps at least 5 sec‐
406           onds if the queue was empty in the previous queue run.
407
408
409       -qf
410
411           Processes saved messages in the queue once and  does  not  fork(2),
412           but runs in the foreground.
413
414
415       -qG name
416
417           Processes jobs in queue group called name only.
418
419
420       -q[!]I substr
421
422           Limits  processed jobs to those containing substr as a substring of
423           the queue ID or not when ! is specified.
424
425
426       -q[!]Q substr
427
428           Limits processed jobs to those quarantined jobs  containing  substr
429           as a substring of the quarantine reason or not when ! is specified.
430
431
432       -q[!]R substr
433
434           Limits  processed jobs to those containing substr as a substring of
435           one of the recipients or not when ! is specified.
436
437
438       -q[!]S substr
439
440           Limits processed jobs to those containing substr as a substring  of
441           the sender or not when ! is specified.
442
443
444       -Q[reason]
445
446           Quarantines  a normal queue item with the given reason or unquaran‐
447           tines a quarantined queue item if no reason is given.  This  should
448           only be used with some sort of item matching as described above.
449
450
451       -r name
452
453           An alternate and obsolete form of the -f flag.
454
455
456       -R ret
457
458           Identifies  the  information  you  want  returned  if  the  message
459           bounces. ret can be HDRS for headers only or FULL for headers  plus
460           body.
461
462
463       -t
464
465           Reads  message  for recipients. To:,Cc:, and Bcc: lines are scanned
466           for people to send to. The Bcc: line is  deleted  before  transmis‐
467           sion.  Any  addresses in the argument list is suppressed. The NoRe‐
468           cipientAction Processing Option can be used to change the  behavior
469           when no legal recipients are included in the message.
470
471
472       -v
473
474           Goes  into  verbose  mode.  Alias  expansions are announced, and so
475           forth.
476
477
478       -V envid
479
480           The indicated envid is passed with the envelope of the message  and
481           returned if the message bounces.
482
483
484       -X logfile
485
486           Logs  all  traffic  in and out of sendmail in the indicated logfile
487           for debugging mailer problems. This produces a  lot  of  data  very
488           quickly and should be used sparingly.
489
490
491   Processing Options
492       There  are a number of "random" options that can be set from a configu‐
493       ration file. Options are represented by a single character or by multi‐
494       ple character names. The syntax for the single character names of is:
495
496         Oxvalue
497
498
499
500
501       This sets option x to be value. Depending on the option, value may be a
502       string, an integer, a boolean (with legal values t, T,  f,  or  F;  the
503       default is TRUE), or a time interval.
504
505
506       The multiple character or long names use this syntax:
507
508         O Longname=argument
509
510
511
512
513       This  sets the option Longname to be argument. The long names are bene‐
514       ficial because they are easier to interpret than the  single  character
515       names.
516
517
518       Not  all processing options have single character names associated with
519       them. In the list below, the multiple character name is presented first
520       followed by the single character syntax enclosed in parentheses.
521
522       AliasFile (Afile)
523
524           Specifies possible alias files.
525
526
527       AliasWait (a N)
528
529           If  set,  waits  up to N minutes for an "@:@" entry to exist in the
530           aliases(4) database before starting up. If it does not appear in  N
531           minutes, issues a warning. Defaults to 10 minutes.
532
533
534       AllowBogusHELO
535
536           Allows  a  HELO  SMTP command that does not include a host name. By
537           default this option is disabled.
538
539
540       BadRcptThrottle=N
541
542           If set and more than the specified number of recipients in a single
543           SMTP  envelope  are  rejected,  sleeps  for  one  second after each
544           rejected RCPT command.
545
546
547       BlankSub (Bc)
548
549           Sets the blank substitution character  to  c.  Unquoted  spaces  in
550           addresses  are  replaced by this character. Defaults to SPACE (that
551           is, no change is made).
552
553
554       CACertFile
555
556           File containing one CA cert.
557
558
559       CACertPath
560
561           Path to directory with certs of CAs.
562
563
564       CheckAliases (n)
565
566           Validates the RHS of aliases when rebuilding the  aliases(4)  data‐
567           base.
568
569
570       CheckpointInterval (CN)
571
572           Checkpoints  the queue every N (default 10) addresses sent. If your
573           system crashes during delivery  to  a  large  list,  this  prevents
574           retransmission to any but the last N recipients.
575
576
577       ClassFactor (zfact)
578
579           The  indicated  factor  fact  is  multiplied  by  the message class
580           (determined by the Precedence: field in the user header and  the  P
581           lines  in the configuration file) and subtracted from the priority.
582           Thus, messages with a higher Priority:  are  favored.  Defaults  to
583           1800.
584
585
586       ClientCertFile
587
588           File  containing the cert of the client, that is, this cert is used
589           when sendmail acts as client.
590
591
592       ClientKeyFile
593
594           File containing the private key belonging to the client cert.
595
596
597       ClientPortOptions
598
599           Sets client SMTP options. The options are  key=value  pairs.  Known
600           keys are:
601
602           Addr Address Mask
603
604               Address  Mask defaults to INADDR_ANY. The address mask can be a
605               numeric address in dot notation or a network name.
606
607
608           Family
609
610               Address family (defaults to INET).
611
612
613           Listen
614
615               Size of listen queue (defaults to 10).
616
617
618           Port
619
620               Name/number of listening port (defaults to smtp).
621
622
623           RcvBufSize
624
625               The size of the TCP/IP receive buffer.
626
627
628           SndBufSize
629
630               The size of the TCP/IP send buffer.
631
632
633           Modifier
634
635               Options (flags) for the daemon. Can be:
636
637               h
638
639                   Uses name of interface for HELO command.
640
641               If h is set, the name corresponding to the  outgoing  interface
642               address (whether chosen by means of the Connection parameter or
643               the default) is used for the HELO/EHLO command.
644
645
646
647       ColonOkInAddr
648
649           If set, colons are treated as a regular character in addresses.  If
650           not  set, they are treated as the introducer to the RFC 822 "group"
651           syntax. This option is on for version  5  and  lower  configuration
652           files.
653
654
655       ConnectionCacheSize (kN)
656
657           The  maximum  number of open connections that are to be cached at a
658           time. The default is 1. This delays closing the current  connection
659           until  either  this  invocation  of  sendmail  needs  to connect to
660           another host or it terminates. Setting it to 0 defaults to the  old
661           behavior, that is, connections are closed immediately.
662
663
664       ConnectionCacheTimeout (Ktimeout)
665
666           The maximum amount of time a cached connection is permitted to idle
667           without activity. If this time is exceeded, the connection is imme‐
668           diately  closed.  This  value  should be small (on the order of ten
669           minutes). Before sendmail uses a cached connection, it always sends
670           a  NOOP (no operation) command to check the connection. If the NOOP
671           command fails, it reopens the connection. This keeps your end  from
672           failing  if the other end times out. The point of this option is to
673           be a good network neighbor and avoid using up  excessive  resources
674           on the other end. The default is five minutes.
675
676
677       ConnectionRateThrottle
678
679           The  maximum number of connections permitted per second. After this
680           many connections are accepted, further connections are delayed.  If
681           not set or <= 0, there is no limit.
682
683
684       ConnectionRateWindowSize
685
686           Define  the length of the interval for which the number of incoming
687           connections is maintained. The default is 60 seconds.
688
689
690       ControlSocketName
691
692           Name of the control socket for daemon management. A  running  send‐
693           mail  daemon  can  be  controlled  through this Unix domain socket.
694           Available commands are: help, restart, shutdown,  and  status.  The
695           status  command  returns the current number of daemon children, the
696           free disk space (in blocks) of the queue directory,  and  the  load
697           average of the machine expressed as an integer. If not set, no con‐
698           trol socket is available. For  the  sake  of  security,  this  Unix
699           domain  socket  must  be in a directory which is accessible only by
700           root; /var/spool/mqueue/.smcontrol is recommended  for  the  socket
701           name.
702
703
704       CRLFile
705
706           File  containing  certificate revocation status, useful for X.509v3
707           authentication.
708
709
710       DaemonPortOptions (Ooptions)
711
712           Sets server SMTP options. The options are  key=value  pairs.  Known
713           keys are:
714
715           Name
716
717               User-definable  name  for  the  daemon (defaults to "Daemon#").
718               Used for error messages and logging.
719
720
721           Addr
722
723               Address mask (defaults INADDR_ANY).
724
725               The address mask may be a numeric address in dot notation or  a
726               network name.
727
728
729           Family
730
731               Address family (defaults to INET).
732
733
734           InputMailFilters
735
736               List of input mail filters for the daemon.
737
738
739           Listen
740
741               Size of listen queue (defaults to 10).
742
743
744           Modifier
745
746               Options  (flags) for the daemon; can be a sequence (without any
747               delimiters) of:
748
749               a
750
751                   Requires authentication.
752
753
754               b
755
756                   Binds to interface through which mail has been received.
757
758
759               c
760
761                   Performs hostname canonification (.cf).
762
763
764               f
765
766                   Requires fully qualified hostname (.cf).
767
768
769               h
770
771                   Uses name of interface for HELO command.
772
773
774               u
775
776                   Allows unqualified addresses (.cf).
777
778
779               C
780
781                   Does not perform hostname canonification.
782
783
784               E
785
786                   Disallows ETRN (see RFC 2476).
787
788
789
790           Name
791
792               User-definable name for the daemon (defaults to Daemon#).  Used
793               for error messages and logging.
794
795
796           Port
797
798               Name/number of listening port (defaults to smtp).
799
800
801           ReceiveSize
802
803               The size of the TCP/IP receive buffer.
804
805
806           SendSize
807
808               The size of the TCP/IP send buffer.
809
810
811           children
812
813               Maximum number of children per daemon. See MaxDaemonChildren.
814
815
816           DeliveryMode
817
818               Delivery mode per daemon. See DeliveryMode.
819
820
821           refuseLA
822
823               RefuseLA per daemon.
824
825
826           delayLA
827
828               DelayLA per daemon.
829
830
831           queueLA
832
833               QueueLA per daemon.
834
835           sendmail listens on a new socket for each occurrence of the Daemon‐
836           PortOptions option in a configuration file.
837
838
839       DataFileBufferSize
840
841           Sets the threshold, in bytes, before a memory-bases queue data file
842           becomes disk-based. The default is 4096 bytes.
843
844
845       DeadLetterDrop
846
847           Defines  the location of the system-wide dead.letter file, formerly
848           hard-coded to /var/tmp/dead.letter. If this option is not set  (the
849           default),  sendmail  does  not  attempt  to  save  to a system-wide
850           dead.letter file in the event it cannot bounce the mail to the user
851           or  postmaster.  Instead,  it  renames the qf file as it has in the
852           past when the dead.letter file could not be opened.
853
854
855       DefaultCharSet
856
857           Sets the default character set to use when converting  unlabeled  8
858           bit input to MIME.
859
860
861       DefaultUser (ggid) or (uuid)
862
863           Sets  the  default group ID for mailers to run in to gid or set the
864           default userid for mailers to uid. Defaults to  1.  The  value  can
865           also be given as a symbolic group or user name.
866
867
868       DelayLA=LA
869
870           When  the  system  load average exceeds LA, sendmail sleeps for one
871           second on most SMTP commands and before accepting connections.
872
873
874       DeliverByMin=time
875
876           Sets minimum time for Deliver By SMTP Service Extension (RFC 2852).
877           If  0,  no  time  is  listed,  if less than 0, the extension is not
878           offered, if greater than 0, it is listed as minimum  time  for  the
879           EHLO keyword DELIVERBY.
880
881
882       DeliveryMode (dx)
883
884           Delivers in mode x. Legal modes are:
885
886           i
887
888               Delivers interactively (synchronously).
889
890
891           b
892
893               Delivers in background (asynchronously).
894
895
896           d
897
898               Deferred  mode.  Database lookups are deferred until the actual
899               queue run.
900
901
902           q
903
904               Just queues the message (delivers during queue run).
905
906           Defaults to b if no option is specified, i if it is  specified  but
907           given no argument (that is, Od is equivalent to Odi).
908
909
910       DHParameters
911
912           File containing the DH parameters.
913
914
915       DialDelay
916
917           If  a  connection  fails,  waits this many seconds and tries again.
918           Zero means "do not retry".
919
920
921       DontBlameSendmail
922
923           If set, overrides the file safety checks. This  compromises  system
924           security   and   should   not   be   used.   See   http://www.send
925           mail.org/tips/DontBlameSendmail.html for more information.
926
927
928       DontExpandCnames
929
930           If set, $[ ... $] lookups that do DNS-based lookups do  not  expand
931           CNAME records.
932
933
934       DontInitGroups
935
936           If  set,  the  initgroups(3C)  routine is never invoked. If you set
937           this, agents run  on  behalf  of  users  only  have  their  primary
938           (/etc/passwd) group permissions.
939
940
941       DontProbeInterfaces
942
943           If  set,  sendmail  does  not insert the names and addresses of any
944           local interfaces into the $=w class. If set, you must also  include
945           support  for  these  addresses, otherwise mail to addresses in this
946           list bounces with a configuration error.
947
948
949       DontPruneRoutes (R)
950
951           If set, does not prune route-addr syntax addresses to  the  minimum
952           possible.
953
954
955       DoubleBounceAddress
956
957           If  an error occurs when sending an error message, sends that "dou‐
958           ble bounce" error message to this address.
959
960
961       EightBitMode (8)
962
963           Uses 8-bit data handling. This option requires one of the following
964           keys.  The  key can selected by using just the first character, but
965           using the full word is better for clarity.
966
967           mimify
968
969               Does any necessary conversion of 8BITMIME to 7-bit.
970
971
972           pass
973
974               Passes unlabeled 8-bit input through as is.
975
976
977           strict
978
979               Rejects unlabeled 8-bit input.
980
981
982
983       ErrorHeader (Efile/message)
984
985           Appends error messages with the indicated  message.  If  it  begins
986           with a slash, it is assumed to be the pathname of a file containing
987           a message (this is the recommended setting).  Otherwise,  it  is  a
988           literal  message.  The  error  file  might  contain the name, email
989           address, and/or phone number of a local postmaster who  could  pro‐
990           vide  assistance to end users. If the option is missing or NULL, or
991           if it names a file which does not exist or which is  not  readable,
992           no message is printed.
993
994
995       ErrorMode (ex)
996
997           Disposes of errors using mode x. The values for x are:
998
999           e
1000
1001               Mails back errors and gives 0 exit status always.
1002
1003
1004           m
1005
1006               Mails back errors.
1007
1008
1009           p
1010
1011               Prints error messages (default).
1012
1013
1014           q
1015
1016               No messages, just gives exit status.
1017
1018
1019           w
1020
1021               Writes back errors (mail if user not logged in).
1022
1023
1024
1025       FallbackMXhost (Vfallbackhost)
1026
1027           If  specified, the fallbackhost acts like a very low priority MX on
1028           every host. This is intended to be used by sites with poor  network
1029           connectivity.
1030
1031
1032       FallBackSmartHost
1033
1034           If  specified, the fallBackSmartHost is used in a last-ditch effort
1035           for each host. This is intended to be  used  by  sites  with  "fake
1036           internal DNS". That is, a company whose DNS accurately reflects the
1037           world inside that company's domain but not outside.
1038
1039
1040       FastSplit
1041
1042           If set to a value greater than zero (the default is one),  it  sup‐
1043           presses the MX lookups on addresses when they are initially sorted,
1044           that is, for the first delivery attempt. This  usually  results  in
1045           faster  envelope splitting unless the MX records are readily avail‐
1046           able in a local DNS cache. To enforce initial sorting based  on  MX
1047           records  set  FastSplit  to zero. If the mail is submitted directly
1048           from the command line, then the value also  limits  the  number  of
1049           processes  to  deliver the envelopes; if more envelopes are created
1050           they are only queued up and must be taken care of by a  queue  run.
1051           Since  the default submission method is by way of SMTP (either from
1052           a MUA or by way of the Message Submission Program [MSP]), the value
1053           of  FastSplit  is  seldom  used to limit the number of processes to
1054           deliver the envelopes.
1055
1056
1057       ForkEachJob (Y)
1058
1059           If set, delivers each job that is run from the queue in a  separate
1060           process.  Use  this  option  if  you are short of memory, since the
1061           default tends to consume considerable amounts of memory  while  the
1062           queue is being processed.
1063
1064
1065       ForwardPath (Jpath)
1066
1067           Sets  the path for searching for users' .forward files. The default
1068           is $z/.forward. Some sites that use the automounter may  prefer  to
1069           change  this to /var/forward/$u to search a file with the same name
1070           as the user in a system directory. It can also be set to a sequence
1071           of  paths  separated by colons; sendmail stops at the first file it
1072           can  successfully  and  safely   open.   For   example,   /var/for‐
1073           ward/$u:$z/.forward  searches  first  in /var/forward/ username and
1074           then in ~username/.forward (but only if the  first  file  does  not
1075           exist). Refer to the NOTES section for more information.
1076
1077
1078       HeloName=name
1079
1080           Sets the name to be used for HELO/EHLO (instead of $j).
1081
1082
1083       HelpFile (Hfile)
1084
1085           Specifies the help file for SMTP.
1086
1087
1088       HoldExpensive (c)
1089
1090           If  an  outgoing mailer is marked as being expensive, does not con‐
1091           nect immediately.
1092
1093
1094       HostsFile
1095
1096           Sets the file to use when doing "file" type access of host names.
1097
1098
1099       HostStatusDirectory
1100
1101           If set, host status is kept on disk between sendmail  runs  in  the
1102           named  directory tree. If a full path is not used, then the path is
1103           interpreted relative to the queue directory.
1104
1105
1106       IgnoreDots (i)
1107
1108           Ignores dots in incoming messages. This is  always  disabled  (that
1109           is, dots are always accepted) when reading SMTP mail.
1110
1111
1112       LogLevel (Ln)
1113
1114           Sets the default log level to n. Defaults to 9.
1115
1116
1117       (Mxvalue)
1118
1119           Sets  the  macro x to value. This is intended only for use from the
1120           command line.
1121
1122
1123       MailboxDatabase
1124
1125           Type of lookup to find information about local mail boxes, defaults
1126           to  pw  which  uses  getpwnam(3C). Other types can be introduced by
1127           adding them to the source code, see libsm/mbdb.c for details.
1128
1129
1130       MatchGECOS (G)
1131
1132           Tries to match recipient names using the GECOS field.  This  allows
1133           for  mail to be delivered using names defined in the GECOS field in
1134           /etc/passwd as well as the login name.
1135
1136
1137       MaxDaemonChildren
1138
1139           The maximum number of children the daemon permits. After this  num‐
1140           ber,  connections  are  rejected.  If  not  set or <=0, there is no
1141           limit.
1142
1143
1144       MaxHopCount (hN)
1145
1146           The maximum hop count. Messages that have been processed more  than
1147           N  times  are assumed to be in a loop and are rejected. Defaults to
1148           25.
1149
1150
1151       MaxMessageSize
1152
1153           The maximum size of messages that are accepted (in bytes).
1154
1155
1156       MaxMimeHeaderLength=M[/N]
1157
1158           Sets the maximum length of certain MIME header field  values  to  M
1159           characters.  For  some  of these headers which take parameters, the
1160           maximum length of each parameter is set to N if specified. If /N is
1161           not  specified, one half of M is used. By default, these values are
1162           0, meaning no checks are done.
1163
1164
1165       MaxNOOPCommands=N
1166
1167           Overrides the default of 20 for the number of useless commands.
1168
1169
1170       MaxQueueChildren=N
1171
1172           When set, this limits the number of concurrent  queue  runner  pro‐
1173           cesses  to  N. This helps to control the amount of system resources
1174           used when processing the  queue.  When  there  are  multiple  queue
1175           groups  defined  and  the  total  number of queue runners for these
1176           queue groups would exceed MaxQueueChildren then  the  queue  groups
1177           are  not  all  run concurrently. That is, some portion of the queue
1178           groups run  concurrently  such  that  MaxQueueChildren  is  not  be
1179           exceeded,  while the remaining queue groups are run later (in round
1180           robin order). See MaxRunnersPerQueue.
1181
1182
1183       MaxQueueRunSize
1184
1185           If set, limits the maximum size of any given queue run to this num‐
1186           ber  of  entries. This stops reading the queue directory after this
1187           number of entries is reached; job priority is not used. If not set,
1188           there is no limit.
1189
1190
1191       MaxRunnersPerQueue=N
1192
1193           This  sets  the  default  maximum number of queue runners for queue
1194           groups. Up to N queue runners work in parallel on a  queue  group's
1195           messages.  This  is useful where the processing of a message in the
1196           queue might delay the processing of  subsequent  messages.  Such  a
1197           delay  can  be the result of non-erroneous situations such as a low
1198           bandwidth connection. The can be overridden on a  per  queue  group
1199           basis by setting the Runners option. The default is 1 when not set.
1200
1201
1202       MeToo (M)
1203
1204           Sends to me too, even if I am in an alias expansion.
1205
1206
1207       MaxRecipientsPerMessage
1208
1209           If  set,  allows no more than the specified number of recipients in
1210           an SMTP envelope. Further recipients receive a 452 error  code  and
1211           are deferred for the next delivery attempt.
1212
1213
1214       MinFreeBlocks (bN/M)
1215
1216           Insists on at least N blocks free on the file system that holds the
1217           queue files before accepting email by way  of  SMTP.  If  there  is
1218           insufficient  space, sendmail gives a 452 response to the MAIL com‐
1219           mand. This invites the sender to try again later. The optional M is
1220           a maximum message size advertised in the ESMTP EHLO response. It is
1221           currently otherwise unused.
1222
1223
1224       MinQueueAge
1225
1226           Specifies the amount of time a job must sit in  the  queue  between
1227           queue  runs.  This allows you to set the queue run interval low for
1228           better responsiveness without trying all  jobs  in  each  run.  The
1229           default value is 0.
1230
1231
1232       MustQuoteChars
1233
1234           Specifies  the  characters  to  be  quoted  in  a full name phrase.
1235           &,;:\()[] are quoted automatically.
1236
1237
1238       NiceQueueRun
1239
1240           Specifies the priority of queue runners. See nice(1).
1241
1242
1243       NoRecipientAction
1244
1245           Sets action if there are no legal recipient files in  the  message.
1246           The legal values are:
1247
1248           add-apparently-to
1249
1250               Adds  an  Apparently-to:  header  with all the known recipients
1251               (which may expose blind recipients).
1252
1253
1254           add-bcc
1255
1256               Adds an empty Bcc: header.
1257
1258
1259           add-to
1260
1261               Adds a To: header with all  the  known  recipients  (which  may
1262               expose blind recipients).
1263
1264
1265           add-to-undisclosed
1266
1267               Adds a To: undisclosed-recipients: header.
1268
1269
1270           none
1271
1272               Does nothing, that is, leaves the message as it is.
1273
1274
1275
1276       OldStyleHeaders (o)
1277
1278           Assumes  that  the  headers  may  be in old format, that is, spaces
1279           delimit names. This actually turns on an adaptive algorithm: if any
1280           recipient  address contains a comma, parenthesis, or angle bracket,
1281           it is assumed that commas already exist. If this flag  is  not  on,
1282           only  commas  delimit  names. Headers are always output with commas
1283           between the names.
1284
1285
1286       OperatorChars or $o
1287
1288           Defines the list of characters that can be  used  to  separate  the
1289           components of an address into tokens.
1290
1291
1292       PidFile
1293
1294           Specifies   the   filename   of   the  pid  file.  The  default  is
1295           /var/run/sendmail.pid. The filename is macro-expanded before it  is
1296           opened, and unlinked when sendmail exits.
1297
1298
1299       PostmasterCopy (Ppostmaster)
1300
1301           If  set, copies of error messages are sent to the named postmaster.
1302           Only the header of the failed message is sent.  Since  most  errors
1303           are user problems, this is probably not a good idea on large sites,
1304           and arguably contains all sorts of privacy violations, but it seems
1305           to be popular with certain operating systems vendors.
1306
1307
1308       PrivacyOptions (popt,opt,...)
1309
1310           Sets  privacy  options. Privacy is really a misnomer; many of these
1311           options are just a way of insisting on stricter  adherence  to  the
1312           SMTP protocol.
1313
1314           The  goaway pseudo-flag sets all flags except noreceipts, restrict‐
1315           mailq, restrictqrun, restrictexpand, noetrn, and  nobodyreturn.  If
1316           mailq  is  restricted,  only  people in the same group as the queue
1317           directory can print the queue. If queue runs are  restricted,  only
1318           root  and  the  owner of the queue directory can run the queue. The
1319           restrict-expand pseudo-flag instructs sendmail to  drop  privileges
1320           when  the -bv option is given by users who are neither root nor the
1321           TrustedUser so users cannot  read  private  aliases,  forwards,  or
1322           :include:  files.  It  adds  the NonRootSafeAddr to the "DontBlame-
1323           Sendmail" option to prevent misleading unsafe address warnings.  It
1324           also  overrides  the  -v  (verbose)  command line option to prevent
1325           information leakage. Authentication  Warnings  add  warnings  about
1326           various conditions that may indicate attempts to fool the mail sys‐
1327           tem, such as using an non-standard queue directory.
1328
1329           The options can be selected from:
1330
1331           authwarnings
1332
1333               Puts X-Authentication-Warning: headers in messages.
1334
1335
1336           goaway
1337
1338               Disallows essentially all SMTP status queries.
1339
1340
1341           needexpnhelo
1342
1343               Insists on HELO or EHLO command before EXPN.
1344
1345
1346           needmailhelo
1347
1348               Insists on HELO or EHLO command before MAIL.
1349
1350
1351           needvrfyhelo
1352
1353               Insists on HELO or EHLO command before VRFY.
1354
1355
1356           noactualrecipient
1357
1358               Do not put an X-Actual-Recipient line in a DNS that reveals the
1359               actual account to which an address is mapped.
1360
1361
1362           noetrn
1363
1364               Disallows ETRN entirely.
1365
1366
1367           noexpn
1368
1369               Disallows EXPN entirely.
1370
1371
1372           noreceipts
1373
1374               Prevents return receipts.
1375
1376
1377           nobodyreturn
1378
1379               Does not return the body of a message with DSNs.
1380
1381
1382           novrfy
1383
1384               Disallows VRFY entirely.
1385
1386
1387           public
1388
1389               Allows open access.
1390
1391
1392           restrictexpand
1393
1394               Restricts -bv and -v command line flags.
1395
1396
1397           restrictmailq
1398
1399               Restricts mailq command.
1400
1401
1402           restrictqrun
1403
1404               Restricts -q command line flag.
1405
1406
1407
1408       ProcessTitlePrefix string
1409
1410           Prefixes  the  process  title shown on "/usr/ucb/ps auxww" listings
1411           with string. The string is macro processed.
1412
1413
1414       QueueDirectory (Qdir)
1415
1416           Uses the named dir as the queue directory.
1417
1418
1419       QueueFactor (qfactor)
1420
1421           Uses factor as the multiplier in the map function to decide when to
1422           just  queue  up jobs rather than run them. This value is divided by
1423           the difference between the current load average and the load  aver‐
1424           age  limit (x flag) to determine the maximum message priority to be
1425           sent. Defaults to 600000.
1426
1427
1428       QueueFileMode=mode
1429
1430           Defaults permissions for queue files (octal). If not set,  sendmail
1431           uses  0600 unless its real and effective uid are different in which
1432           case it uses 0644.
1433
1434
1435       QueueLA (xLA)
1436
1437           When the system load average exceeds LA, just queues messages (that
1438           is,  does not try to send them). Defaults to eight times the number
1439           of processors online when sendmail starts.
1440
1441
1442       QueueSortOrder=algorithm
1443
1444           Sets the algorithm used for sorting the queue. Only the first char‐
1445           acter  of the value is used. Legal values are host (to order by the
1446           name of the first host name of the first recipient),  filename  (to
1447           order  by  the  name of the queue file name), time (to order by the
1448           submission/creation time), random (to order randomly), modification
1449           (to  order  by  the modification time of the qf file (older entries
1450           first)), none (to not order), and priority  (to  order  by  message
1451           priority).  Host ordering makes better use of the connection cache,
1452           but may tend to process low priority messages that go to  a  single
1453           host over high priority messages that go to several hosts; it prob‐
1454           ably shouldn't be used on slow network links. Filename and  modifi‐
1455           cation  time  ordering  saves  the  overhead  of reading all of the
1456           queued items before starting the queue run.  Creation  (submission)
1457           time  ordering  is almost always a bad idea, since it allows large,
1458           bulk mail to go out before smaller, personal  mail,  but  may  have
1459           applicability  on  some hosts with very fast connections. Random is
1460           useful if several queue runners are started by hand  which  try  to
1461           drain  the  same queue since odds are they are working on different
1462           parts of the queue at the  same  time.  Priority  ordering  is  the
1463           default.
1464
1465
1466       QueueTimeout (Trtime/wtime)
1467
1468           Sets the queue timeout to rtime. After this interval, messages that
1469           have not  been  successfully  sent  are  returned  to  the  sender.
1470           Defaults  to  five  days (5d). The optional wtime is the time after
1471           which a warning message is sent. If it is missing  or  0,  then  no
1472           warning messages are sent.
1473
1474
1475       RandFile
1476
1477           File  containing  random data (use prefix file:) or the name of the
1478           UNIX socket if EGD is used (use prefix  egd:).  Note  that  Solaris
1479           supports random(7D), so this does not need to be specified.
1480
1481
1482       RecipientFactor (yfact)
1483
1484           The  indicated  factor fact is added to the priority (thus lowering
1485           the priority of the job) for each recipient, that  is,  this  value
1486           penalizes jobs with large numbers of recipients. Defaults to 30000.
1487
1488
1489       RefuseLA (XLA)
1490
1491           When the system load average exceeds LA, refuses incoming SMTP con‐
1492           nections. Defaults to 12 times the number of processors online when
1493           sendmail starts.
1494
1495
1496       RejectLogInterval
1497
1498           Log interval when refusing connections for this long (default: 3h).
1499
1500
1501       ResolverOptions (I)
1502
1503           Tunes DNS lookups.
1504
1505
1506       RetryFactor (Zfact)
1507
1508           The indicated factor fact is added to the priority every time a job
1509           is processed. Thus, each time a job is processed, its  priority  is
1510           decreased  by the indicated value. In most environments this should
1511           be positive, since hosts that are down are all too often down for a
1512           long time. Defaults to 90000.
1513
1514
1515       RrtImpliesDsn
1516
1517           If  this  option  is  set,  a  Return-Receipt-To: header causes the
1518           request of a DSN, which is sent to the envelope sender as  required
1519           by RFC 1891, not to the address given in the header.
1520
1521
1522       RunAsUser
1523
1524           If  set,  becomes  this  user  when  reading  and  delivering mail.
1525           Intended for use of firewalls where users do not have accounts.
1526
1527
1528       SafeFileEnvironment
1529
1530           If set, sendmail does a chroot into this directory  before  writing
1531           files.
1532
1533
1534       SaveFromLine (f)
1535
1536           Saves  Unix-style From lines at the front of headers. Normally they
1537           are assumed redundant and discarded.
1538
1539
1540       SendMimeErrors (j)
1541
1542           If set, sends error messages in MIME format (see RFC 2045  and  RFC
1543           1344  for  details).  If disabled, sendmail does not return the DSN
1544           keyword in response to an EHLO and  does  not  do  Delivery  Status
1545           Notification processing as described in RFC 1891.
1546
1547
1548       ServerCertFile
1549
1550           File  containing the cert of the server, that is, this cert is used
1551           when sendmail acts as server.
1552
1553
1554       ServerKeyFile
1555
1556           File containing the private key belonging to the server cert.
1557
1558
1559       ServiceSwitchFile
1560
1561           Defines the path to the service-switch  file.  Since  the  service-
1562           switch  file  is  defined in the Solaris operating environment this
1563           option is ignored.
1564
1565
1566       SevenBitInput (7)
1567
1568           Strips input to seven bits for compatibility with old systems. This
1569           should not be necessary.
1570
1571
1572       SharedMemoryKey
1573
1574           Specifies  key to use for shared memory segment. If not set (or 0),
1575           shared memory is not be used. If this option is set,  sendmail  can
1576           share  some data between different instances. For example, the num‐
1577           ber of entries in a queue directory or the  available  space  in  a
1578           file  system.  This  allows  for  more efficient program execution,
1579           since only one process needs to update the  data  instead  of  each
1580           individual process gathering the data each time it is required.
1581
1582
1583       SharedMemoryKeyFile=file
1584
1585           If  SharedMemoryKeyFile  is  set  to -1, the automatically selected
1586           shared memory key will be stored in the specified file.
1587
1588
1589       SingleLineFromHeader
1590
1591           If set, From: lines that have embedded newlines are unwrapped  onto
1592           one line.
1593
1594
1595       SingleThreadDelivery
1596
1597           If  this  option  and  the HostStatusDirectory option are both set,
1598           uses single thread deliveries to other hosts.
1599
1600
1601       SmtpGreetingMessage or $e
1602
1603           Specifies the initial SMTP greeting message.
1604
1605
1606       SoftBounce
1607
1608           If set, issue temporary errors (4xy) instead  of  permanent  errors
1609           (5xy).  This can be useful during testing of a new configuration to
1610           avoid erroneous bouncing of mail.
1611
1612
1613       StatusFile (Sfile)
1614
1615           Logs  statistics  in  the  named  file.   By   default,   this   is
1616           /etc/mail/sendmail.st.  As  root,  you  must  touch(1) this file to
1617           enable mailstats(1).
1618
1619
1620       SuperSafe (s)
1621
1622           This option can be set to True, False, Interactive, or  PostMilter.
1623           If  set to True, sendmail is set to super-safe when running things,
1624           that is, always instantiate the queue file, even if you  are  going
1625           to  attempt  immediate  delivery.  sendmail always instantiates the
1626           queue file before returning control to the client under any circum‐
1627           stances.  This should really always be set to True. The Interactive
1628           value has been introduced in 8.12 and can  be  used  together  with
1629           DeliveryMode=i.  It  skips  some  synchronization  calls  which are
1630           effectively doubled in the code execution path for  this  mode.  If
1631           set  to  PostMilter,  sendmail  defers synchronizing the queue file
1632           until any milters have signaled acceptance of the message. PostMil‐
1633           ter  is  useful only when sendmail is running as an SMTP server; in
1634           all other situations it acts the same as True.
1635
1636
1637       TempFileMode (Fmode)
1638
1639           Specifies the file mode for queue files.
1640
1641
1642       Timeout (rtimeouts)
1643
1644           Timeout reads after time interval. The timeouts argument is a  list
1645           of  keyword=value  pairs. All but command apply to client SMTP. For
1646           backward compatibility, a timeout with no keyword= part is set  all
1647           of  the  longer  values.  The recognized timeouts and their default
1648           values, and their minimum values  specified  in  RFC  1123  section
1649           5.3.2 are:
1650
1651           aconnect
1652
1653               all connections for a single delivery attempt [0, unspecified]
1654
1655
1656           command
1657
1658               command read [1h, 5m]
1659
1660
1661           connect
1662
1663               initial connect [0, unspecified]
1664
1665
1666           control
1667
1668               complete control socket transaction [2m, none]
1669
1670
1671           datablock
1672
1673               data block read [1h, 3m]
1674
1675
1676           datafinal
1677
1678               reply to final . in data [1h, 10m]
1679
1680
1681           datainit
1682
1683               reply to DATA command [5m, 2m]
1684
1685
1686           fileopen
1687
1688               file open [60sec, none]
1689
1690
1691           helo
1692
1693               reply to HELO or EHLO command [5m, none]
1694
1695
1696           hoststatus
1697
1698               host retry [30m, unspecified]
1699
1700
1701           iconnect
1702
1703               first attempt to connect to a host [0, unspecified]
1704
1705
1706           ident
1707
1708               IDENT protocol timeout [5s, none]
1709
1710
1711           initial
1712
1713               wait for initial greeting message [5m, 5m]
1714
1715
1716           lhlo
1717
1718               wait for reply to an LMTP LHLO command [2m, unspecified]
1719
1720
1721           mail
1722
1723               reply to MAIL command [10m, 5m]
1724
1725
1726           misc
1727
1728               reply to NOOP and VERB commands [2m, none]
1729
1730
1731           queuereturn
1732
1733               undeliverable message returned [5d]
1734
1735
1736           queuewarn
1737
1738               deferred warning [4h]
1739
1740
1741           quit
1742
1743               reply to QUIT command [2m, none]
1744
1745
1746           rcpt
1747
1748               reply to RCPT command [1h, 5m]
1749
1750
1751           resolver.retrans
1752
1753               Resolver's  retransmission time interval (in seconds) [varies].
1754               Sets    both    Timeout.resolver.retrans.first    and     Time‐
1755               out.resolver.retrans.normal.
1756
1757
1758           resolver.retrans.first
1759
1760               Resolver's  retransmission  time  interval (in seconds) for the
1761               first attempt to deliver a message [varies].
1762
1763
1764           resolver.retrans.normal
1765
1766               Resolver's retransmission time interval (in  seconds)  for  all
1767               look-ups except the first delivery attempt [varies].
1768
1769
1770           resolver.retry
1771
1772               Number  of  times to retransmit a resolver query [varies]. Sets
1773               both       Timeout.resolver.retry.first        and        Time‐
1774               out.resolver.retry.normal.
1775
1776
1777           resolver.retry.first
1778
1779               Number  of  times  to retransmit a resolver query for the first
1780               attempt to deliver a message [varies].
1781
1782
1783           resolver.retry.normal
1784
1785               Number of times to retransmit a resolver query for all look-ups
1786               except the first delivery attempt [varies].
1787
1788
1789           rset
1790
1791               reply to RSET command [5m, none]
1792
1793
1794           starttls
1795
1796               response to an SMTP STARTTLS command [1h]
1797
1798
1799
1800       TimeZoneSpec (ttzinfo)
1801
1802           Sets  the  local  time zone info to tzinfo, for example, "PST8PDT".
1803           Actually, if this is  not  set,  the  TZ  environment  variable  is
1804           cleared  (so  the  system  default  is  used); if set but null, the
1805           user's TZ variable is used, and if set and non-null, the  TZ  vari‐
1806           able is set to this value.
1807
1808
1809       TLSSrvOptions
1810
1811           If  this  option  is  'V',  then  no  client  verification  is per‐
1812           formed,that is, the server does not ask for a certificate.
1813
1814
1815       TrustedUser
1816
1817           The user parameter can be a user name (looked up in the passwd map)
1818           or  a numeric user id. Trusted user for file ownership and starting
1819           the daemon. If set,  generated  alias  databases  and  the  control
1820           socket (if configured) are automatically owned by this user.
1821
1822
1823       TryNullMXList (w)
1824
1825           If  you  are the "best" (that is, lowest preference) MX for a given
1826           host, you should normally detect this situation and treat that con‐
1827           dition  specially,  by forwarding the mail to a UUCP feed, treating
1828           it as local, or whatever. However, in some cases (such as  Internet
1829           firewalls)  you may want to try to connect directly to that host as
1830           though it had no MX records at  all.  Setting  this  option  causes
1831           sendmail  to try this. The downside is that errors in your configu‐
1832           ration are likely to be diagnosed as  "host  unknown"  or  "message
1833           timed  out"  instead  of  something more meaningful. This option is
1834           deprecated.
1835
1836
1837       UnixFromLine or $l
1838
1839           The "From " line used when sending to files or programs.
1840
1841
1842       UnsafeGroupWrites
1843
1844           If set, group-writable :include: and .forward files are  considered
1845           "unsafe", that is, programs and files cannot be directly referenced
1846           from such files.
1847
1848
1849       UseErrorsTo (l)
1850
1851           If there is an Errors-To:  header,  sends  error  messages  to  the
1852           addresses  listed  there.  They normally go to the envelope sender.
1853           Use of this option causes sendmail to violate RFC 1123. This option
1854           is not recommended and deprecated.
1855
1856
1857       UseMSP
1858
1859           Uses  as  mail  submission  program, that is, allows group writable
1860           queue files if the group is the same  as  that  of  a  set-group-id
1861           sendmail binary.
1862
1863
1864       UserDatabaseSpec (U)
1865
1866           Defines  the name and location of the file containing User Database
1867           information.
1868
1869
1870       Verbose (v)
1871
1872           Runs in verbose mode. If this is set, sendmail adjusts the  HoldEx‐
1873           pensive and DeliveryMode options so that all mail is delivered com‐
1874           pletely in a single job so that you can  see  the  entire  delivery
1875           process.  The  Verbose option should never be set in the configura‐
1876           tion file; it is intended for command line use only.
1877
1878
1879       XscriptFileBufferSize
1880
1881           Sets the threshold, in bytes, before  a  memory-bases  queue  tran‐
1882           script file becomes disk-based. The default is 4096 bytes.
1883
1884
1885
1886       If  the first character of the user name is a vertical bar, the rest of
1887       the user name is used as the name of a program to pipe the mail to.  It
1888       may  be  necessary  to quote the name of the user to keep sendmail from
1889       suppressing the blanks from between arguments.
1890
1891
1892       If invoked as newaliases, sendmail rebuilds the alias database, so long
1893       as  the  /etc/mail/aliases* files are owned by root and root has exclu‐
1894       sive write permission. If invoked as mailq, sendmail  prints  the  con‐
1895       tents of the mail queue.
1896

OPERANDS

1898       address
1899
1900           address of an intended recipient of the message being sent.
1901
1902

USAGE

1904       See  largefile(5)  for the description of the behavior of sendmail when
1905       encountering files greater than or equal to 2 Gbyte ( 2^31 bytes).
1906

EXIT STATUS

1908       sendmail returns an exit status describing what it did. The  codes  are
1909       defined in /usr/include/sysexits.h.
1910
1911       EX_OK
1912
1913           Successful completion on all addresses.
1914
1915
1916       EX_NOUSER
1917
1918           User name not recognized.
1919
1920
1921       EX_UNAVAILABLE
1922
1923           Catchall. Necessary resources were not available.
1924
1925
1926       EX_SYNTAX
1927
1928           Syntax error in address.
1929
1930
1931       EX_SOFTWARE
1932
1933           Internal software error, including bad arguments.
1934
1935
1936       EX_OSERR
1937
1938           Temporary operating system error, such as "cannot fork".
1939
1940
1941       EX_NOHOST
1942
1943           Host name not recognized.
1944
1945
1946       EX_TEMPFAIL
1947
1948           Message could not be sent immediately, but was queued.
1949
1950

ENVIRONMENT VARIABLES

1952       No environment variables are used. However, sendmail's start-up script,
1953       invoked by svcadm(1M), reads /etc/default/sendmail. In  this  file,  if
1954       the  variable  ETRN_HOSTS is set, the start-up script parses this vari‐
1955       able and invokes etrn(1M) appropriately. ETRN_HOSTS should  be  of  the
1956       form:
1957
1958         "s1:c1.1,c1.2        s2:c2.1 s3:c3.1,c3.2,c3.3"
1959
1960
1961
1962
1963       That is, white-space separated groups of server:client where client can
1964       be one or more comma-separated names. The  :client  part  is  optional.
1965       server is the name of the server to prod; a mail queue run is requested
1966       for each client name. This is comparable to running:
1967
1968         /usr/lib/sendmail -qR client
1969
1970
1971
1972
1973       on the host server.
1974

FILES

1976       dead.letter
1977
1978           Unmailable text
1979
1980
1981       /etc/default/sendmail
1982
1983           Contains default settings. You can override some of the settings by
1984           command line options.
1985
1986
1987       /etc/mail/aliases
1988
1989           Mail aliases file (ASCII)
1990
1991
1992       /etc/mail/aliases.db
1993
1994           Database of mail aliases (binary)
1995
1996
1997       /etc/mail/aliases.dir
1998
1999           Database of mail aliases (binary)
2000
2001
2002       /etc/mail/aliases.pag
2003
2004           Database of mail aliases (binary)
2005
2006
2007       /etc/mail/sendmail.cf
2008
2009           Defines environment for sendmail
2010
2011
2012       /etc/mail/submit.cf
2013
2014           Defines environment for MSP
2015
2016
2017       /etc/mail/trusted-users
2018
2019           Lists users that are "trusted", that is, able to set their envelope
2020           from address using -f without generating a  warning  message.  Note
2021           that  this file is consulted by the default sendmail.cf, but not by
2022           the  default  submit.cf,   in   which   the   line   referring   to
2023           /etc/mail/trusted-users  is  commented  out.  See  sendmail(4)  for
2024           instructions on making changes to submit.cf and sendmail.cf.
2025
2026
2027       /var/spool/clientmqueue/*
2028
2029           Temporary files and queued mail
2030
2031
2032       /var/spool/mqueue/*
2033
2034           Temporary files and queued mail
2035
2036
2037       ~/.forward
2038
2039           List of recipients for forwarding messages
2040
2041
2042       /usr/include/libmilter/README
2043
2044           Describes the steps needed to compile and run a filter
2045
2046

ATTRIBUTES

2048       See attributes(5) for descriptions of the following attributes:
2049
2050
2051
2052
2053       ┌─────────────────────────────┬─────────────────────────────┐
2054       │      ATTRIBUTE TYPE         │      ATTRIBUTE VALUE        │
2055       ├─────────────────────────────┼─────────────────────────────┤
2056       │Availability                 │SUNWsndmu                    │
2057       └─────────────────────────────┴─────────────────────────────┘
2058

SEE ALSO

2060       svcs(1), biff(1B), mail(1), mailq(1),  mailx(1),  nice(1),  check-host‐
2061       name(1M),  check-permissions(1M), etrn(1M), newaliases(1M), svcadm(1M),
2062       svccfg(1M), fork(2), getpwnam(3C), getusershell(3C), resolver(3RESOLV),
2063       aliases(4),  hosts(4),  sendmail(4),  shells(4),  attributes(5), large‐
2064       file(5), smf(5), random(7D)
2065
2066
2067       tcpd(1M), hosts_access(4) in the SUNWtcpd package.
2068
2069
2070       RFC 2821 Simple Mail Transfer Protocol, John Klensin, April 2001.
2071
2072
2073       RFC 2822 Internet Message Format, Pete Resnick, April 2001.
2074
2075
2076       sendmail, Third Edition, Bryan Costales with Eric  Allman,  O'Reilly  &
2077       Associates, Inc., 2003.
2078
2079
2080       http://www.sendmail.org
2081
2082
2083       http://www.milter.org
2084

NOTES

2086       The  sendmail  program requires a fully qualified host name when start‐
2087       ing. A script has been included to help verify  if  the  host  name  is
2088       defined properly (see check-hostname(1M)).
2089
2090
2091       The  permissions  and  the  ownership  of several directories have been
2092       changed in  order  to  increase  security.  In  particular,  access  to
2093       /etc/mail and /var/spool/mqueue has been restricted.
2094
2095
2096       Security  restrictions  have  been placed users using .forward files to
2097       pipe mail to a program or redirect mail to a file.  The  default  shell
2098       (as   listed   in  /etc/passwd)  of  these  users  must  be  listed  in
2099       /etc/shells. This restriction does not affect mail that is being  redi‐
2100       rected to another alias.
2101
2102
2103       Additional  restrictions  have  been  put  in  place  on  .forward  and
2104       :include: files. These files and the directory structure that they  are
2105       placed  in  cannot  be  group-  or  world-writable.  See  check-permis‐
2106       sions(1M).
2107
2108
2109       If you have interfaces that map to domains that have  MX  records  that
2110       point  to  non-local  destinations,  you might need to enable the Dont‐
2111       ProbeInterfaces option to enable delivery to those destinations. In its
2112       default  startup  behavior,  sendmail probes each interface and adds an
2113       interface's IP addresses, as well as any domains that  those  addresses
2114       map  to,  to its list of domains that are considered local. For domains
2115       thus added, being on the list of local domains is equivalent to  having
2116       a  0-preference  MX  record, with localhost as the MX value. If this is
2117       not the result you want, enable DontProbeInterfaces.
2118
2119
2120
2121SunOS 5.11                        25 Feb 2009                     sendmail(1M)
Impressum