forked from az143/kuvert
-
Notifications
You must be signed in to change notification settings - Fork 1
/
dot-kuvert
88 lines (67 loc) · 2.05 KB
/
dot-kuvert
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
# ~/.kuvert: example configuration file for kuvert v2
# options are given without leading whitespace
# which key to sign with by default, long keyid recommended
defaultkey 0x1234abcd8765fedba
# logging to syslog, which facility? defaults to no syslog
syslog mail
# no separate logfile
logfile ""
# who gets error reports
mail-on-error [email protected]
# where to spool mails and temporary files
queuedir /home/az/kuvert_queue
tempdir /tmp/kuvert_temp
# how often to check the queue, in seconds
interval 60
# add an x-mailer header?
identify f
# add the explanatory mime preamble?
preamble f
# how to submit outbound mail:
#
# 1. via smtp
# settings: msserver, msport, ssl,
# ssl-cert, ssl-key, ssl-ca;
# authenticating as msuser, mspass
#
# msserver some.server.com
# msport 587
# ssl starttls
# ssl-key mycerts/my.key.pem
# ssl-cert mycerts/my.cert.pem
# msuser smtp-username
# mspass smtp-password
# mspass-from-query-secret f
#
# 2. by using the msp program
#
msp /usr/sbin/sendmail -om -oi -oem
can-detach t
# smtp submission daemon settings
# do NOT change mahost unless you know what you're doing!
# making smtp submission port available outside localhost
# is a serious security risk
# maport 2587
# mahost 127.0.0.1
# ma-user yourname
# ma-pass somethingSECRET
defaultaction fallback-all
gpg /usr/bin/gpg
alwaystrust t
use-agent t
query-secret /usr/bin/q-agent get %s
flush-secret /usr/bin/q-agent delete %s
# action specifications for recipients
# are given with some leading whitespace
# multiple keys for somebody and you want a specific one?
[email protected] fallback,0x1234abcd
# those don't want gpg-signed stuff
@somewhere.com none
# signed but not encrypted
(he|they|others)@there.com signonly
# majordomo and similar mailinglist systems get plain mail
(majordomo|-request)@ none
# if you want no mail involving this address to go out unencrypted,
# set mustencrypt. any addresses with mustencrypt but no key cause the
# hole mail to be rejected. mustencrypt overrides fallback and fallback-all.
[email protected] mustencrypt