FEATURE(authinfo)
Use a separate database for authentication information V8.12 and later
Beginning with V8.12, FEATURE(authinfo) tells
sendmail to look in a special
database file called authinfo
for authentication information, rather than in the
access database. This means
you can have more secure permissions for the
authinfo database than for
the access database. FEATURE(authinfo) is
declared like this:
FEATURE(`authinfo')
This creates a default configuration declaration that looks like this:
Kauthinfo hash /etc/mail/authinfo
Here the hash is
derived from the setting of the DATABASE_MAP_TYPE
mc configuration macro (Set a Default Database-Map Type for Features on page 897) and the /etc/mail is derived from the setting
of the MAIL_SETTINGS_DIR mc
macro (The MAIL_SETTINGS_DIR mc Macro on page 68). If you wish to change the defaults
without having to change these two
mc configuration macros, you
can simply define that new default by adding a
second argument to the feature declaration:
FEATURE(`authinfo', `hash /etc/private/authinfo')
If you provide a second argument and the second argument is a literal LDAP:
FEATURE(`authinfo', `LDAP')
the default becomes the following (we have wrapped the lines to fit the page):
Kauthinfo ldap −1 -v sendmailMTAMapValue -k (&(objectClass=sendmailMTAMapObject)
(|(sendmailMTACluster=${sendmailMTACluster})(sendmailMTAHost=$j))
(sendmailMTAMapName=authinfo)(sendmailMTAKey=%0))See ldap (was ldapx) on page 912 for a description of the ldap database type and
its
Get sendmail, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
