X-Git-Url: https://diplodocus.org/git/nmh/blobdiff_plain/23f2b007ecac94848616420b27f0819ea559507e..def18b30fee4a04529011e67fdd786c628271b4b:/man/send.man diff --git a/man/send.man b/man/send.man index 2691c899..4b8a1213 100644 --- a/man/send.man +++ b/man/send.man @@ -1,13 +1,15 @@ .\" .\" %nmhwarning% .\" -.TH SEND %manext1% "March 23, 2016" "%nmhversion%" +.TH SEND %manext1% "October 10, 2016" "%nmhversion%" .SH NAME send \- send a message .SH SYNOPSIS .HP 5 .na .B send +.RB [ \-help ] +.RB [ \-version ] .RB [ \-alias .IR aliasfile ] .RB [ \-draft ] @@ -40,8 +42,6 @@ send \- send a message .IR port-name/number ] .RB [ \-sasl ] .RB [ \-nosasl ] -.RB [ \-saslmaxssf -.IR ssf ] .RB [ \-saslmech .IR mechanism ] .RB [ \-authservice @@ -52,15 +52,15 @@ send \- send a message .RB [ \-tls ] .RB [ \-initialtls ] .RB [ \-notls ] +.RB [ \-certverify ] +.RB [ \-nocertverify ] .RB [ \-width .IR columns ] .RB [ file \&...] -.RB [ \-version ] -.RB [ \-help ] .ad .SH DESCRIPTION -.B Send +.B send will cause each of the specified files to be delivered to each of the destinations in the \*(lqTo:\*(rq, \*(lqcc:\*(rq, \*(lqBcc:\*(rq, \*(lqDcc:\*(rq, and \*(lqFcc:\*(rq fields of the message. If @@ -238,7 +238,7 @@ lot of partial messages. The argument to tells it how long to pause between postings. .PP -.B Send +.B send with no .I file argument will query whether the draft @@ -265,7 +265,7 @@ If a \*(lqDcc:\*(rq field is encountered and the mail transport method is not in use, its addresses will be used for delivery, and the \*(lqDcc:\*(rq field will be removed from the message. The blind recipients will receive the same message sent to the sighted -recipients. *WARNING* Recipients listed in the \*(lqDcc:\*(rq field receive no +recipients. *WARNING* Recipients listed in the \*(lqDcc:\*(rq field receive no explicit indication that they have received a \*(lqblind copy\*(rq. This can cause blind recipients to inadvertently reply to all of the sighted recipients of the @@ -367,7 +367,7 @@ as to how long it should make header lines containing addresses. .PP The mail transport system default is provided in .I %nmhetcdir%/mts.conf -but can be overriiden here with the +but can be overridden here with the .B \-mts switch. .PP @@ -391,7 +391,7 @@ entry). The switch can be used to view the SMTP transaction. (Beware that the SMTP transaction may contain authentication information either in plaintext or easily decoded base64.) If -.B \-saslmech xoauth2 +.B \-sasl \-saslmech xoauth2 is used, the HTTP transaction is also shown. .PP If @@ -422,28 +422,31 @@ will attempt to negotiate a security layer for session encryption. Encrypted data is labelled with `(encrypted)' and `(decrypted)' when viewing the SMTP transaction with the .B \-snoop -switch. The -.B \-saslmaxssf -switch can be used to select the maximum value of the Security Strength Factor. -This is an integer value and the exact meaning of this value depends on the -underlying SASL mechanism. A value of 0 disables encryption. +switch; see the +.B post +man page description of +.B \-snoop +for its other features. .PP If .B nmh has been compiled with OAuth support, the +.B \-sasl +and .B \-saslmech xoauth2 -switch will enable OAuth authentication. The +switches will enable OAuth authentication. The .B \-user switch must be used, and the -.I user-name +.I username must be an email address the user has for the service, which must be specified with the .B \-authservice .I service -switch. Before using this, the user must authorize nmh by running +switch. Before using OAuth authentication, the user must authorize nmh by +running .B mhlogin and grant authorization to that account. See the -.B mhlogin +.IR mhlogin (1) man page for more details. .PP If @@ -461,9 +464,13 @@ using the STARTTLS command. The will negotiate TLS immediately after the connection has taken place, before any SMTP commands are sent or received. Encrypted data is labelled with `(tls-encrypted)' and -`(tls-decrypted)' when viewing the SMTP transction with the +`(tls-decrypted)' when viewing the SMTP transaction with the .B \-snoop -switch. +switch; see the +.B post +man page description of +.B \-snoop +for its other features. The .B \-notls switch will disable all attempts to negotiate TLS. @@ -474,6 +481,15 @@ will be implied if TLS support was compiled in. Though port 465 for SMTPS (SMTP over SSL) was deregistered by IANA in 1998, it is still used for that service. .PP +When using TLS the default is to verify the remote certificate and SubjectName +against the local trusted certificate store. This can be controlled by +the +.B \-certverify +and +.B \-nocertverify +switches. See your OpenSSL documentation for more information on certificate +verification. +.PP The files specified by the profile entry \*(lqAliasfile:\*(rq and any additional alias files given by the .B \-alias @@ -485,6 +501,97 @@ can be named). See .IR mh\-alias (5) for more information. +.SS Selection based on sender address: sendfrom +One or more +.I sendfrom +profile components can be used to select a mail server address, mail server +port, or any other switch that can be supplied to +.BR post . +It works by first looking at the sender address and domain name in the +message draft, as described below. +It then looks for a corresponding profile entry, which contains the +.B post +switches. +To enable, add profile entries of the form: +.PP +.RS 5 +.RI sendfrom- "address/domain name" : " post switches" +.RE +.PP +The email address is extracted from the Envelope-From: header, if not blank, +the Sender: header, or the From: header line in the message draft. +Multiple profile entries, with different email addresses or domain names, are +supported. +This allows different switches to +.BR post , +such as -user, to be associated with different email addresses. +If a domain name is used, it matches all users in that domain. +.PP +Here is an example profile entry using OAuth for an account hosted by gmail: +.PP +.nf +.RS 5 +sendfrom-gmail_address@example.com: -sasl -saslmech xoauth2 +.RS 5 +-authservice gmail -tls -server smtp.gmail.com +-user gmail_login@example.com +.RE +.RE +.fi +.PP +(Indentation indicates a continued line, as supported in MH profiles.) +The username need not be the same as the sender address, which was extracted +from the appropriate header line as noted above. +.PP +Here are example profile entries that use an nmh credentials file: +.PP +.nf +.RS 5 +credentials: file:nmhcreds +sendfrom-sendgrid_address@example.com: -sasl -tls +.RS 5 +-server smtp.sendgrid.net +.RE +sendfrom-outbound.att.net: -sasl -initialtls +.RS 5 +-server outbound.att.net -port 465 +.RE +sendfrom-fastmail.com: -initialtls -sasl -saslmech LOGIN +.RS 5 +-server smtps-proxy.messagingengine.com -port 80 +.RE +.RE +.fi +.PP +where nmhcreds is in the user's nmh directory (from the Path profile component) +and contains: +.PP +.nf +.RS 5 +machine smtp.sendgrid.net +.RS 5 +login sendgrid_login@example.com +password ******** +.RE +machine outbound.att.net +.RS 5 +login att_login@example.com +password ******** +.RE +machine smtps-proxy.messagingengine.com +.RS 5 +login fastmail_login@example.com +password ******** +.RE +.RE +.fi +.PP +For more information on authentication to mail servers, see the +.IR mhlogin (1) +man page for OAuth services, and +.IR mh-profile (5) +man page for login credentials. +.PP .SH FILES .fc ^ ~ .nf @@ -502,6 +609,8 @@ for more information. ^Signature:~^To determine the user's mail signature ^mailproc:~^Program to post failure notices ^postproc:~^Program to post the message +^sendfrom-address:~^Switches to post for sender address +^sendfrom-domain:~^Switches to post for sender domain name .fi .SH "SEE ALSO" .IR comp (1), @@ -532,6 +641,7 @@ for more information. .RB ` \-noverbose ' .RB ` \-nowatch ' .RB ` "\-width\ 72" ' +.RB ` \-certverify ' .fi .SH CONTEXT None