From 6c40879579dc6663cf7050571ecff9139c18af75 Mon Sep 17 00:00:00 2001 From: Stef Walter Date: Tue, 20 Jul 2004 18:42:13 +0000 Subject: - Added comments about loopback feature --- src/clamsmtpd.8 | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) (limited to 'src/clamsmtpd.8') diff --git a/src/clamsmtpd.8 b/src/clamsmtpd.8 index 00ff1aa..c3d786d 100644 --- a/src/clamsmtpd.8 +++ b/src/clamsmtpd.8 @@ -131,7 +131,7 @@ is the number of seconds to wait while reading data from network connections. [Default: 180 seconds] .It serveraddr The address of the SMTP server to send email to once it's been scanned. This -option must be specified. See syntax of addreses below. +option must be specified. See syntax of addreses below. .El .Sh LOGGING .Nm @@ -141,6 +141,16 @@ by default under the 'mail' facility. You can also output logs to the console using the .Fl d option. +.Sh LOOPBACK FEATURE +In some cases it's advantagous to consolidate the virus scanning and filtering +for several mail servers on one machine. +.Nm +allows this by providing a loopback feature to connect back to the IP that a +SMTP connection comes from. If only a port is specified for the +.Ar serveraddr +(without IP) then +.Nm +passes the email to the incoming peer's IP address on the said port. .Sh SECURITY There's no reason to run this daemon as root. It is meant as a filter and should listen on a high TCP port. It's probably a good idea to run it using the same @@ -155,6 +165,10 @@ writes its temporary files to. In order to be secure, it should not be a world writeable location. Specify the directory using the .Fl t option. +.Pp +.Nm +should probably not be run on a publicly accessible IP address or without a +firewall. This is especially true if the loopback feature is used (see above). .Sh ADDRESSES Addresses can be specified in multiple formats: .Bl -bullet -- cgit v1.2.3