1 .\"	$OpenBSD$
2 .\"
3 .\" Copyright (c) 2019 Martijn van Duren <martijn@openbsd.org>
4 .\"
5 .\" Permission to use, copy, modify, and distribute this software for any
6 .\" purpose with or without fee is hereby granted, provided that the above
7 .\" copyright notice and this permission notice appear in all copies.
8 .\"
9 .\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10 .\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11 .\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12 .\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13 .\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14 .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15 .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16 .\"
17 .Dd $Mdocdate$
18 .Dt FILTER-ADMDSCRUB 8
19 .Os
20 .Sh NAME
21 .Nm filter-admdscrub
22 .Nd Administrative Management Domain scrubber
23 .Sh SYNOPSIS
24 .Nm
25 .Op Fl rv
26 .Op Ar authserv-id
27 .Sh DESCRIPTION
28 .Nm
29 checks mail for
30 .Ql Authentication-Results
31 headers in the requested
32 .Ar authserv-id
33 domain and removes them.
34 This filter is intended to be used as the first filter at a border MTA.
35 This should prevent utilization of these headers in further filters or MTAs when
36 they don't originate from within it's own trusted domain.
37 The
38 .Fl r
39 flag can be set to reject mails containing these headers.
40 If
41 .Ar authserv-id
42 is not specified it defaults to opensmtpd's
43 .Ic admd
44 option.
45 For more verbose logging the
46 .Fl v
47 flag can be used.
48 .Sh SEE ALSO
49 .Xr smtpd.conf 5
50 .Sh STANDARDS
51 .Rs
52 .%A M. Kucherawy
53 .%D May 2019
54 .%R RFC 8601
55 .%T Message Header Field for Indicating Message Authentication Status
56 .Re