Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

opendkim-atpszone(8) [debian man page]

opendkim-atpszone(8)					      System Manager's Manual					      opendkim-atpszone(8)

NAME

       opendkim-atpszone - DKIM ATPS zone file generation tool

SYNOPSIS

       opendkim-atpszone  [-A]	[-C  address]  [-E  secs]  [-h	hash]  [-N  ns[,...]]  [-o file] [-r secs] [-R secs] [-S] [-t secs] [-T secs] [-v]
       [dataset]

DESCRIPTION

       opendkim-atpszone generates a file suitable for use with named(8) to publish a set of domains authorized as third-party signers for a local
       domain.

       The dataset parameter should specify a set of data as described in the opendkim(8) man page.  It can currently refer to flat files, Sleepy-
       cat databases, comma-separated lists, LDAP directories or SQL databases.  The keys in the named database are assumed to comprise a  set	of
       domains	that  are  to be advertised using the experimental Authorized Third-Party Signers protocol as permitted to sign mail using DKIM on
       behalf of the local domain.  Values in the database are not used.

OPTIONS

       -A     Adds a "._atps" suffix to records in the zone file.

       -C contact
	      Uses contact as the contact information to be used when an SOA record is generated (see -S below).  If not specified, the userid	of
	      the executing user and the local hostname will be used; if the executing user can't be determined, "hostmaster" will be used.

       -E secs
	      When generating an SOA record (see -S below), use secs as the default record expiration time.  The default is 604800.

       -h hash
	      Specifies  which	SHA  hash  algorithm to use.  Must be one of "none", "sha1" and "sha256", with "sha256" being the default if it is
	      available.

       -N nslist
	      Specifies a comma-separated list of nameservers, which will be output in NS records before the TXT records.  The first nameserver in
	      this list will also be used in the SOA record (if -S is also specified) as the authority hostname.

       -o file
	      Sends output to the named file rather than standard output.

       -r secs
	      When generating an SOA record (see -S below), use secs as the zone refresh time.	The default is 10800.

       -R secs
	      When generating an SOA record (see -S below), use secs as the zone retry time.  The default is 1800.

       -S     Asks for an SOA record to be generated at the top of the output.	The content of this output can be controlled using the -E, -r, -R,
	      -T options.  The serial number will be generated based on the current time of day.

       -t ttl Puts a TTL (time-to-live) value of ttl on all records output.  The units are in seconds.

       -T secs
	      When generating an SOA record (see -S below), use secs as the default record TTL time.  The default is 86400.

       -v     Increases the verbosity of debugging output written to standard error.

VERSION

       This man page covers the version of opendkim-atpszone that shipped with version 2.6.8 of OpenDKIM.

COPYRIGHT

       Copyright (c) 2011, 2012, The OpenDKIM Project.	All rights reserved.

SEE ALSO

       opendkim(8), opendkim.conf(5)

							       The OpenDKIM Project					      opendkim-atpszone(8)

Check Out this Related Man Page

ldns-read-zone(1)					      General Commands Manual						 ldns-read-zone(1)

NAME

       ldns-read-zone - read a zonefile and print it

SYNOPSIS

       ldns-read-zone ZONEFILE

DESCRIPTION

       ldns-read-zone reads a DNS zone file and prints it. The output has 1 resource record per line, and no pretty-printing makeup.

OPTIONS

       -c     Canonicalize all resource records in the zone before printing

       -d     Only  print  DNSSEC  data from the zone. This option skips every record that is not of type NSEC, NSEC3, RRSIG or DNSKEY. DS records
	      are not printed.

       -b     Include Bubble Babble encoding of DS's.

       -0     Print a (null) for the RRSIG inception, expiry and key data. This option can be used when comparing different signing  systems  that
	      use the same DNSKEYs for signing but would have a slightly different timings/jitter.

       -h     Show usage and exit

       -n     Do not print the SOA record

       -p     Pad  the	SOA serial number with spaces so the number and the spaces together take ten characters. This is useful for in file serial
	      number increments.

       -s     Strip DNSSEC data from the zone. This option skips every record that is of type NSEC, NSEC3, RRSIG or DNSKEY. DS records	are  still
	      printed.

       -S [[+|0]number | YYYYMMDDxx | unixtime ]
	      Set  serial  number  to  the  given number, or when preceded by a sign, offset the exisiting number with it. When giving the literal
	      strings YYYYMMDDxx or unixtime, the serial number is tried to be reset in datecounter or in unixtime format respectively. Though	is
	      the updated serial number is smaller than the original one, the original one is simply increased by one.

	      When updating a serial number, records of type NSEC, NSEC3, RRSIG and DNSKEY will be skipped when printing the zone.

       -v     Show the version and exit

       -z     Sort the zone before printing (this implies -c)

AUTHOR

       Written by the ldns team as an example for ldns usage.

REPORTING BUGS

       Report bugs to <ldns-team@nlnetlabs.nl>.

COPYRIGHT

       Copyright  (C)  2005 NLnet Labs. This is free software. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PUR-
       POSE.

								    30 May 2005 						 ldns-read-zone(1)
Man Page