-.TH INC %manext1% "August 14, 2016" "%nmhversion%"
+.TH INC %manext1% "October 9, 2016" "%nmhversion%"
.\"
.\" %nmhwarning%
.\"
.HP 5
.na
.B inc
+.RB [ \-help ]
+.RB [ \-version ]
.RI [ +folder ]
.RB [ \-audit
.IR audit\-file ]
.IR mechanism ]
.RB [ \-authservice
.IR service ]
+.RB [ \-initialtls ]
+.RB [ \-notls ]
+.RB [ \-certverify " | " \-nocertverify ]
.RB [ \-snoop ]
-.RB [ \-version ]
-.RB [ \-help ]
.ad
.SH DESCRIPTION
-.B Inc
+.B inc
incorporates mail from the user's incoming mail drop into
an
.B nmh
.RI \*(lq Audit\-file \*(rq
will be in the user's nmh directory unless a full path is specified.
.PP
-.B Inc
+.B inc
will incorporate even improperly formatted messages into the
user's nmh folder, inserting a blank line prior to the offending component
and printing a comment identifying the bad message.
.B inc
will add each of the newly incorporated messages to
each sequence named by the profile entry.
-.B Inc
+.B inc
will not zero each sequence prior to adding messages.
.PP
The interpretation of the
.B $MAILHOST
is set and
.B \-host
-is specified as well, the commandline switch will override
+is specified as well, the command-line switch will override
the environment variable. The
.B \-port
switch specifies the port name or number used to connect to the POP
switch,
.B inc
will use the specified command to establish the connection to the POP
-server. The string
+server. The string
.IR %h
in the command will be substituted by the hostname to connect to.
.PP
uses POP, then the
.B \-pack
.I file
-switch is considered. If given, then
+switch is considered. If given, then
.B inc
simply uses the POP to
.B packf
.BR \-snoop ,
which will allow you to watch the POP transaction take place
between you and the POP server. If
-.B \-saslmech xoauth2
+.B \-sasl \-saslmech xoauth2
is used, the HTTP transaction is also shown.
.PP
If
If
.B nmh
has been compiled with OAuth support, the
+.B \-sasl
+and
.B \-saslmech xoauth2
-switch will enable OAuth authentication. The
+switches will enable OAuth authentication. The
.B \-user
switch must be used, and the
.I user-name
.B mhlogin
man page for more details.
.PP
-Gmail only supports POP3 over TLS, but
-.B inc
-has no TLS support. To work around this, use something like
-.B -proxy 'openssl s_client -connect %h:995 -CAfile /etc/ssl/certs/ca-certificates.crt -quiet'
+If
+.B nmh
+has been compiled with TLS support, the
+.B \-initialtls
+switch will require the negotiation of TLS when connecting
+to the remote POP server. The
+.B \-initialtls
+switch will negotiate TLS immediately after the connection has taken place,
+before any POP commands are sent or received. Data encrypted by TLS is
+labeled `(tls-encrypted)' and `(tls-decrypted)` with viewing the POP
+transaction with the
+.B \-snoop
+switch. The
+.B \-notls
+switch will disable all attempts to negotiate TLS.
+.PP
+When using TLS the default is to verify the remote certificate and SubjectName
+against the local trusted certificate store. This can be controlled by
+the
+.B \-certverify
+and
+.B \-nocertverify
+switches. See your OpenSSL documentation for more information on certificate
+verification.
.SH FILES
.PD 0
.TP 20
projects / nmh / blobdiff