Global Settings

Syntax: g_authent_info name=string field=string access=string default=string type=string

g_authent_info_grp - Fields to show to users in this group

Specifies the authent fields this user group is allowed to see and change. This applies only to the fields visible on the account properties page and the domain admin "Users" page it cannot be used to prevent access to fields which are managed by the web interface i.e. 'fwd'

Syntax: g_authent_info_grp group=string fields=string tag=string

g_authent_ip - Authent Lookup IP numbers via authent modules - enables relaying

If enabled each connecting IP address will be looked up in your user database as x.x.x.x@ip eg: "127.0.0.1@ip" and if the user is found then relaying is allowed and if 'send_limit="nn"' is defined then that will set the tarpit send limit for that user.

For per IP tarpit limits to work you need to define the g_tarpit_max and g_tarpit_max_remote settings. And g_tarpit_drop to make the limit effective.

Syntax: g_authent_ip bool

g_authent_last_login - Store users last login time in the database

This setting will cause the authent field 'last_login' to be updated when a user logs in. The field is set to a timestamp which is 'the number of seconds since midnight January 1, 1970'. This field is updated 'at most' once every 24 hours. Other features i.e. delete_user_after and disable_smtp_after will look for this field.

Syntax: g_authent_last_login bool

g_authent_logall - Turns on logging of authent requests

If enabled, authentication requests are logged in mail.log as "<day> <time> Authent[<action> <info>]".

Syntax: g_authent_logall bool

g_authent_number - Authent number

The number of concurrent authent processes to run. If you are using a slow external authent module (e.g. sql) then it is probably worth running 3-4, there is no need to have more than 1 when using nwauth.exe. (Default = 1) 

Syntax: g_authent_number int

g_authent_process - Authent process

The command line of a NetWin authentication module. You can use one of our standard modules for LDAP, ODBCAuth, MySQL etc or write your own. For more information on these modules see the authentication section of the manual .

This will typically be something like:
g_authent_process "E:\surgemail\nwauth.exe -path E:\surgemail"
or
g_authent_process "/usr/local/surgemail/nwauth -path /usr/local/surgemail"

Syntax: g_authent_process string

g_authent_restart - Cycle auth modules every 1000 lookups

This is useful if there are resource allocation issues in the authentication module. Eg OBDCAuth

Syntax: g_authent_restart bool

g_authent_single - Allow local users with a single quote char in their name

This let's users exist who contain the single quote ' character. It is not supported with some authent modules though, nwauth does allow it.

Syntax: g_authent_single bool

g_authent_spaces - Allow spaces in passwords DO NOT USE

Not supported for most authent modules, requires nwauth 4.0r or later, If you have already got users with spaces in their passwords and you turn this setting on, they will no longer be able to login until they reset their passwords. Authent module must support slash encoding, for nwauth add -spaces to command line

Syntax: g_authent_spaces bool

g_authent_strip_domain - Strip domain for authent lookups

Use when your database expects one 'primary' domain to do lookups without a domain name then SurgeMail will strip that domain only from lookups. Typically this is only necessary with old DMail authent modules.

Syntax: g_authent_strip_domain string

g_authent_timeout - Timeout for authent response

Timeout for authent response, default 60 seconds.

Syntax: g_authent_timeout int

g_autologin_file - File to use to share auto login information on NFS based cluster

This allows webmail to autologin when using an nfs based cluster and a load sharing device.

Syntax: g_autologin_file string

g_autologin_imap_disable - Disable IMAP based autologins

IMAP autologins allow autologin to surgeweb.

Syntax: g_autologin_imap_disable bool

g_autologin_pop - Enables WebMail Autologin using POP when on another server

Webmail needs the ability to automatically login to SurgeMail to changes passwords etc. This setting will do this via an extension to the pop protocol allowing WebMail to autologin whilst running on another server. (Normally this is done using a temporary file)

Syntax: g_autologin_pop bool

g_bad_login_allow - Number of consecutive bad logins for a user before blocking that user

Number of consecutive bad logins for a user before blocking that user.

Syntax: g_bad_login_allow int

g_bad_login_ip_allow - Number of bad logins from an IP before blocking that IP

Number of bad logins from a single IP before blocking that IP.

Syntax: g_bad_login_ip_allow int

g_bad_login_ip_ignore - IP address(es) to ignore bad logins from

Use for webmail system or other local gateway to stop bad login counter from locking out all users.

Syntax: g_bad_login_ip_ignore string

See also: g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_badfrom_noip, g_badfrom_noip_temp, g_badfrom_check, g_badfrom_stamp, g_badfrom_badmx, g_badfrom_from, g_badfrom_whitelist

g_bad_login_mins - Minutes to block login for, if consecutive bad ones received

Minutes to block login for, if consecutive g_badlogin_allow or g_badlogin_ip_allow bad logins received=.

Syntax: g_bad_login_mins int

g_badfrom_badmx - Drop message if this MX

If mx host is one of these addresses then drop the message, it's definitely spam (e.g. 127.*).

Syntax: g_badfrom_badmx string

g_badfrom_check - Check if 'from' envelope can be delivered to

If this is set to "true" then SurgeMail will connect back to the envelope 'from' address and check that the address is valid, a cache is used to improve performance, if it cannot connect then the message is bounced as probable spam. It's nicer to use the following setting "g_badfrom_stamp" as well, then if SurgeMail cannot connect back or the user is invalid then a header is added to indicate this, and our SmiteSpam rules will use this to increase the spam weighting.

You can use g_spam_allow to exempt an IP from this check as well as g_badfrom_whitelist for a domain. Please note that by default SurgeMail uses a blank mail from to do its check.
MAIL FROM: <>
Some servers might reject this, though they shouldn't because its a standard bounce, however if they do you can use g_badfrom_from to set a mail from address to be used for this check.

Syntax: g_badfrom_check bool

g_badfrom_from - Mail from account for g_badfrom_check

From to use when doing the g_badfrom_check check, not normally needed, if set must be set to valid account.

Syntax: g_badfrom_from string

g_badfrom_noip - Check envelope from domain exists and is a valid IP number

Check envelope from domain exists and is a valid ip number, if not bounce message.

Syntax: g_badfrom_noip bool

g_badfrom_noip_temp - Makes g_badfrom_noip return a temporary error instead of a 501 error

Use g_verify_mx_skip to bypass/whitelist ip addresses from this check

Syntax: g_badfrom_noip_temp bool

g_badfrom_stamp - If 'g_badfrom_check' is bad then stamp a header on the message

g_badfrom_check must also be set to true. If this is set to "true" then SurgeMail will connect back to the envelope 'from' address and check that the address is valid, a cache is used to improve performance, if it cannot connect then a header is added to indicate this, and our SmiteSpam rules will use this to increase the spam weighting.

Syntax: g_badfrom_stamp bool

g_badfrom_whitelist - Whitelist of domains to skip from checks

Whitelist of "from" address domains to skip g_badfrom_* checks.

eg.
g_badfrom_whitelist "specialdomain.com"

Syntax: g_badfrom_whitelist string

g_ban_blackhole - Leave connected but reject all recipients without looking them up

Leave connected but reject all recipients without looking them up. This is good of dealing with high volume spammers without wasting resources doing user lookups. 

Syntax: g_ban_blackhole bool

g_ban_from - Ban any matching MAIL FROM: envelope

Same as 'ban_helo' but applies to the from (return address) part of the mail envelope. This is NOT the same as the from/sender header in the message itself!!! This equates to the 'Return-path:' header that the mail server adds. 

Syntax: g_ban_from string

g_ban_helo - Ban any machine that gives a matching 'helo' string

This is a simple spam protection system to block known spam/problem users based on the 'helo' name they send to your system. This name is recorded in the 'received' header along with the IP address. This name is very easy to 'fake' so is not a high security level of protection, but it is simple for stopping stupid robots etc, that have gone insane.

Example: *junkmail.com 

Syntax: g_ban_helo string

g_ban_rcpt - Ban any matching RCPT TO: envelope

Same as 'ban_helo' but applies to the recipient part of the envelope (destination users) this is NOT the same as the 'To:' header in the message itself!!! This can sometimes be used to block really simple spamming programs that always send to the same invalid users. 

Syntax: g_ban_rcpt string

g_bank_debug - Log request to bank server

Use when trying to debug the g_bank_url post/response

Syntax: g_bank_debug bool

See also: g_bank_url, g_bank_user, g_bank_pass, g_bank_ok, g_bank_reason, g_bank_log, g_bank_group

g_bank_group - Create price groups with descriptions

See g_bank_url for details

Syntax: g_bank_group group=string price=string desc=string

See also: g_bank_url, g_bank_user, g_bank_pass, g_bank_ok, g_bank_reason, g_bank_log, g_bank_debug

g_bank_log - Log lines matching this in response.

See g_bank_url for details

Syntax: g_bank_log string

See also: g_bank_url, g_bank_user, g_bank_pass, g_bank_ok, g_bank_reason, g_bank_debug, g_bank_group

g_bank_ok - Find this in response, if found then charge was successful

See g_bank_url for details

Syntax: g_bank_ok string

See also: g_bank_url, g_bank_user, g_bank_pass, g_bank_reason, g_bank_log, g_bank_debug, g_bank_group

g_bank_pass - Password for authenticated web request to banks system

See g_bank_url for details

Syntax: g_bank_pass string

See also: g_bank_url, g_bank_user, g_bank_ok, g_bank_reason, g_bank_log, g_bank_debug, g_bank_group

g_bank_reason - This line is returned to user if it is found

See g_bank_url for details

Syntax: g_bank_reason string

See also: g_bank_url, g_bank_user, g_bank_pass, g_bank_ok, g_bank_log, g_bank_debug, g_bank_group

g_bank_url - URL to charge a credit card (experimental)

This allows automated monthly charging of users

Syntax: g_bank_url string

See also: g_bank_user, g_bank_pass, g_bank_ok, g_bank_reason, g_bank_log, g_bank_debug, g_bank_group

g_bank_user - Username for authenticated web request to banks system

See g_bank_url for details

Syntax: g_bank_user string

See also: g_bank_url, g_bank_pass, g_bank_ok, g_bank_reason, g_bank_log, g_bank_debug, g_bank_group

g_bind_byfromip - Bind outgoing SMTP connections to the specified IP based on the sender IP

This setting has no further documentation currently available

Syntax: g_bind_byfromip fromip=string bindip=string

g_bind_from - Bind outgoing SMTP connections based on 'from' envelope

Bind outgoing SMTP connections based on the IP of the virtual domain in 'from' envelope. This is only useful if you are using IP based virtual domains. 

Syntax: g_bind_from bool

g_bind_incoming - Bind outgoing SMTP connections based on incoming ip address

So if the incomnig mail came in on interface address 1.2.3.4 then that same address is used to send the email

Syntax: g_bind_incoming bool

g_bind_out - Bind outgoing smtp connections to IP

Bind outgoing smtp connections to this IP number. 

Syntax: g_bind_out string

g_black_above - Level for spam detection for g_black_count

Level for spam detection for blacklisting IP number e.g. 7. 

Syntax: g_black_above int

g_black_count - Blacklist sender IP based on spam sent

Number of spam in a row before IP blacklisted for 30 minutes eg: 30 (default = disabled)

Syntax: g_black_count int

g_black_isspam - Blacklist ip address for any spam training event

This setting has no further documentation currently available

Syntax: g_black_isspam bool

g_black_to - Blacklist sender IP based on catch addresses

Blacklist senders IP address for 30 minutes if they deliver to these spam catch email addresses.

eg. g_black_to "smith@mydomain.com,catcher@myotherdomain.com"

Syntax: g_black_to string

g_black_white - Whitelist to prevent blacklisting, e.g. 1.2.3.*,mail*.aol.com

This setting has no further documentation currently available

Syntax: g_black_white string

g_block_files - Block certain attachments

Allow you to block any mail with certain files attached. 

g_block_files "*.exe,*.cmd,*.com"

Syntax: g_block_files string

See also: g_block_wild, g_block_skip, g_block_longok, g_debug_block

g_block_longok - If true allow long file names (more than 180 char)

By default files names over this length are ALWAYS blocked if g_block_files is used, in rare situations these are not just viruses attempting to get around the filter.

Syntax: g_block_longok bool

See also: g_block_wild, g_block_files, g_block_skip, g_debug_block

g_block_skip - From or To address to bypass g_block_files

Some users will need to send various attachments, these users are excempt to the g_block_files rule

Syntax: g_block_skip string

See also: g_block_wild, g_block_files, g_block_longok, g_debug_block

g_block_wild - Block wildcards in usernames

Block the '*' wildcard character in usernames.

Syntax: g_block_wild bool

g_blogs_allow_links - Allow users to post comments that contain urls

Due to widespread abuse of blogs this is not recommended.

Syntax: g_blogs_allow_links bool

g_blogs_cleanup_links - Delete existing posts that contain urls

This setting will help cleanup existing spam postings to your users blogs.

Syntax: g_blogs_cleanup_links bool

g_blogs_comment_rev - Show blog comments newest first

Helps if there are lots of comments, this is a global setting not per blog..

Syntax: g_blogs_comment_rev bool

g_blogs_default_template - Default template set that is used by newly created blogs

This setting can have a value of the name of any directory in the SurgeMail blogtpl directory

Syntax: g_blogs_default_template string

g_blogs_domonly - Only list blogs in a users domain

By default all blogs in all domains are listed/shown to the user. This setting causes it to only list blogs in the users domain.

Syntax: g_blogs_domonly bool

g_blogs_enable - Surgemail blogs

Allow users to create blogs

Syntax: g_blogs_enable bool

g_blogs_image_optional - Allow users to specify if image verification is required for comments

By default image verification is now required, this prevents spammers from abusing the many 'test' blogs set up by your users.

Syntax: g_blogs_image_optional bool

g_blogs_max_per_user - Maximum number of blogs per user

Maximum number of blogs per user, default is 5

Syntax: g_blogs_max_per_user int

See also: blogs_max_per_user, g_user_blogs

g_blogs_maximum_image_size - Default maximum image size

Images larger than this (in largest dimension) that are posted to blogs are scaled down, default is 390, per blog setting can overide this.

Syntax: g_blogs_maximum_image_size int

g_blogs_maximum_image_width - Default maximum image width

Images larger than this that are posted to blogs are scaled down, default is 390, per blog setting can overide this.

Syntax: g_blogs_maximum_image_width int

g_blogs_maximum_items_in_top_page - Maximum number of items on the top blog page

Maximum number of post bodies to appear on a blog top page, default is 10

Syntax: g_blogs_maximum_items_in_top_page int

g_blogs_no_suffix - Shortens URL, url_blogs must be defined for each domain

This shortens http://a.com/blog/juggling to http:/a.com/juggling, but does require that you define a specific name for the blogs in the domain based url_blogs setting

Syntax: g_blogs_no_suffix bool

g_blogs_not_global - Only allows access to a blog onthe domain it is defined on

Only allows access to a blog on the domain it is defined on, this is not recommended. (probably want to use g_blogs_not_unique, g_blogs_domonly too)

Syntax: g_blogs_not_global bool

g_blogs_not_unique - Allow the same blog name in multiple domains

If set you can create different blogs with the same name in different virtual domains, this is not recommended.

Syntax: g_blogs_not_unique bool

g_blogs_ping - Sites to ping on each post

Host and path to ping on each blog post. eg: host=rpc.weblog.com path=/RPC2

Syntax: g_blogs_ping host=string path=string

g_blogs_sub_domain_prefix - Prefix to use instead of blogs. for blog subdomains. use ! to have no prefix.

Experimental feature do not use

Syntax: g_blogs_sub_domain_prefix string

g_blogs_use_sub_domains - Make blogs accessible at http://blog_name.domain/

If you're DNS entry supports it, turn on this setting to make blogs accessible at http://blog_name.blogs.domain/ instead of http://domain/blogs/blog_name

Syntax: g_blogs_use_sub_domains bool

g_body_filter - Enable user email body filtering

Allows the user to configure filters which filter the body of incoming messages

Syntax: g_body_filter bool

g_bomb_max - Max messages to a single address per hour

Simple system to prevent intentional or more likely, accidental mail loops or mail bombs where thousands of Emails are sent to a single user. A setting in the range of 100-1000 is generally good depending on your sensitivity to incorrectly blocking real mail.  We suggest 1000 is a good setting if you are unsure.

This counts the messages from a single IP address to a single recipient. If a single IP sends more than this many messages to any single recipient then they will be tarpitted (slowed down and rejected).

Use spam_allow ip.address.list to over-ride the limit for known local systems that might exceed this limit (unlikely anything will).

Syntax: g_bomb_max int

g_bomb_max_from - Max msgs from a single email address/hour

Max msgs from a single email address/hour.

Syntax: g_bomb_max_from int

g_bounce_bind - Use a specific ip address for outgoing bounces

Some RBL sites blacklist machines for sending bounces, which is probably a good thing. But even with spf running your server may occasionally send a bounce to a forged address, and so you can use an alternate ip address for these bounces to avoid blacklisting your main mail server address. First you must assign the ip address to your network interface etc

Syntax: g_bounce_bind string

g_bounce_disable - Bounce Disable

Disable all bounces. This is particularly useful when under spam attack. This is for outgoing bounces it stops SurgeMail generating bounces it won't affect incomming bounces from other servers.

example:
g_bounce_disable "true"

Syntax: g_bounce_disable bool

g_bounce_limit - Max size of bounce messages

Max size in bytes of message to send back as bounce message is truncated if necessary.

Syntax: g_bounce_limit int

g_bounce_nodrop - Enables locally generated bounces for non local users

This setting makes bounces occur normally, the reason bounces are normally dropped for non local users is that they are almost always spam bouncing off another server due to forwarding settings, and as such sending a bounce email will get your server black listed, so we decided it was best to drop them by default since they are rarely useful. Turn this setting on at your own risk :-). Instead use g_bounce_to to list domains that it is safe to bounce to.

Syntax: g_bounce_nodrop bool

g_bounce_redirect - Send all bounces to a local address

This can be used to avoid 'back scatter' which can get your server listed in various black listed sites. In general your server should not generate bounces so if you get lots you may find changing config settings can stop them. Note this only redirects bounces to non local recipients, so your users sending outgoing mail will still get their own bounce messages.

Syntax: g_bounce_redirect string

g_bounce_reject - Reject bounces by ip address from known dumb mail servers

Some mail servers (exchange) will accept email, then bounce it, this is now considered a 'crime' and will get your server black listed, so if you have surgemail running as a gateway for such servers you can tell it to reject any bounce that server is foolish enough to send you.

Syntax: g_bounce_reject string

g_bounce_some_stop - Disables locally generated bounces for partial message failure

This can decrease back scatter, but it has other bad effects, it can result in duplicate messasges arriving

Syntax: g_bounce_some_stop bool

g_bounce_suggest - Send bounces to postmaster if spf cannot be verified

This may help stop black listing for backscatter while still alerting the sending domain admin that one of their users emails to your server bounced, You can specify a template file suggest.eml if you don't like the default message suggesting the postmaster add spf records for their domain

Syntax: g_bounce_suggest bool

g_bounce_to - Domains to treat as local and send bounces to

This setting makes bounces occur normally, the reason bounces are normally dropped for non local users is that they are almost always spam bouncing off another server due to forwarding settings, and as such sending a bounce email will get your server black listed, so we decided it was best to drop them by default since they are rarely useful. Turn this setting on at your own risk :-). Instead use g_bounce_to to list domains that it is safe to bounce to. e.g. *@a.com,*@b.com

Syntax: g_bounce_to string

g_breakin_white - Email addresses that can send from multipe ips

When a hacker guesses a password on your system they will often send outgoing spam to your server from multiple ip addresses, Surgemail detects this and emails the administrator when it occurs, use this setting to enable specific users who need to do this (this is very unusual though)

Syntax: g_breakin_white string

g_bull_rule - Post bulletins to this domain

Senders must be authenticated user that matches the sender, domain can be blank to send to all domains, the to field is the address you will send posts to, typically something like: bulletins@your.domain.name

Syntax: g_bull_rule to=string domain=string sender=string

g_centipaid - see CentiPaid.htm

Authentication server and port for CentiPaid.

Syntax: g_centipaid string

g_cid_skip_to - Skip CID score, good for lawyers etc

Some users will trigger CID matches due to the nature of their business (accountants/lawyers) for these people you may want to list them here. CID is content matching, usually scams which often use legal language.

Syntax: g_cid_skip_to string

See also: g_friends_spam_score, g_imap_spam_train, g_spam_allow, g_spam_allow_disable, g_spam_allow_rbl, g_spam_allow_msg, g_spam_block_msg, g_spam_allow_known, g_spam_allow_recent, g_spam_autotrain, g_spam_block, g_spam_block_gateway, g_spam_check_auth, g_spam_content_disable, g_spam_body, g_spam_body_url, g_spam_body_more, g_spam_folders, g_spam_folders_show, g_spam_flag, g_spam_from_blacklist, g_spam_grey, g_spam_grey_classc, g_spam_grey_dflt, g_spam_grey_dflt_bad, g_spam_grey_verify, g_spam_grey_size, g_spam_grey_bounce, g_spam_grey_window, g_spam_grey_nofive, g_spam_grey_nseen, g_spam_grey_nohard, g_spam_lang, g_spam_probe, g_spam_probe_unknown, g_spam_probe_more, g_spam_probe_whois, g_spam_subject, g_spam_subject_dom, g_spam_subject_gateway, g_spam_subject_word, g_spam_userconfig, g_spam_user_max, g_spam_from_max, g_spam_user_skip, g_spam_bounce, g_spam_bounce_text, g_spam_bounce_all, g_spam_bounce_trusted, g_spam_cmd, g_spam_cmd_if, g_spam_cmd_skip, g_spam_cmd_reject, g_spam_vanish, g_spam_vanish_all, g_spam_info_hide, g_spam_info, g_spam_internal, g_spam_noupdate, g_spam_notrain, g_spam_isspam_kind, g_spam_isspam_ignore, g_spam_aspam, g_spam_poly, g_spam_poly_disable, g_spam_private, g_spam_alias_any, g_spam_url, g_spam_catcher, g_spam_char, g_spam_notspam, g_spam_hold_keep, g_spam_hold_hide, g_spam_header_trust_ip, g_spam_share, g_spam_status_hour, g_spam_phishing

g_comment - Management notes and comments about the server

This is a dummy setting that lets you store information in the ini file that will survive setting changes from the web admin tool.

Syntax: g_comment date=string name=string comment=string

g_con_perip - Connections per IP

Maximum number of connections allowed per IP address. Primarily this is used to prevent simple denial of service attacks where one user could otherwise use up all the channels your system can support and then do nothing with them. 

Syntax: g_con_perip int

g_con_perip_except - Connections per IP exception

IP list of exception addresses to g_con_perip. 

Syntax: g_con_perip_except string

g_con_persubnet - Maximum concurrent connections per subnet

Maximum number of concurrent connections per subnet. This limits concurrent connections from a sub net, great for automatically stopping professional spammers who use multiple addresses. A typical setting might be 20. Subnet is /24.

Syntax: g_con_persubnet int

g_convert_percent - Convert % signs top @ in recipient addresses

Some Spam tests send mail user%spamdomain.com@localdomain.com to see if a server is an open relay. If a default address is set up for the local domain this will be delivered to this local address and the test assumes the mail server is an open relay. This setting prevents this. 

Syntax: g_convert_percent bool

g_country_ip - Tag messages with country of origin

Downloads a ip to country database and then adds a header based on that to each message to show where it came from. This file IpToCountry.csv should appear in your surgemail home directory after enabling this setting (restart surgemail too), if the file doesn't appear you can download it via http://netwinsite.com/surgemail/IpToCountry.csv

Syntax: g_country_ip bool

See also: spam_strip, spam_block, spam_noblock, g_aspam_headers, g_aspam_need_ip, g_black_isspam, g_friends_spam_score, g_imap_spam_train, g_report_spam, g_report_notspam, g_spam_allow, g_spam_allow_disable, g_spam_allow_rbl, g_spam_allow_msg, g_spam_block_msg, g_spam_allow_known, g_spam_allow_recent, g_spam_autotrain, g_spam_block, g_spam_block_gateway, g_spam_check_auth, g_spam_content_disable, g_spam_body, g_spam_body_url, g_spam_body_more, g_spam_folders, g_spam_folders_show, g_spam_flag, g_spam_from_blacklist, g_spam_grey, g_spam_grey_classc, g_spam_grey_dflt, g_spam_grey_dflt_bad, g_spam_grey_verify, g_spam_grey_size, g_spam_grey_bounce, g_spam_grey_window, g_spam_grey_nofive, g_spam_grey_nseen, g_spam_grey_nohard, g_spam_lang, g_spam_probe, g_spam_probe_unknown, g_spam_probe_more, g_spam_probe_whois, g_spam_subject, g_spam_subject_dom, g_spam_subject_gateway, g_spam_subject_word, g_spam_userconfig, g_spam_user_max, g_spam_from_max, g_spam_user_skip, g_spam_bounce, g_spam_bounce_text, g_spam_bounce_all, g_spam_bounce_trusted, g_spam_cmd, g_spam_cmd_if, g_spam_cmd_skip, g_spam_cmd_reject, g_spam_vanish, g_spam_vanish_all, g_spam_info_hide, g_spam_info, g_spam_internal, g_spam_noupdate, g_spam_notrain, g_spam_isspam_kind, g_spam_isspam_ignore, g_spam_aspam, g_spam_poly, g_spam_poly_disable, g_spam_private, g_spam_alias_any, g_spam_url, g_spam_catcher, g_spam_char, g_spam_notspam, g_spam_hold_keep, g_spam_hold_hide, g_spam_header_trust_ip, g_spam_share, g_spam_status_hour, g_spam_phishing, g_spamdetect_always

g_create_allow - List of characters allowed in usernames/passwords

Defaults to A-Za-z0-9\-_. meaning usernames/password may contain letters, numbers, -, _ and . and nothing else.

Syntax: g_create_allow string

g_create_allow_pass - List of characters allowed in passwords

Settting overriding g_create_allow just for passwords.

Syntax: g_create_allow_pass string

g_create_apply - List of user groups to apply create_* settings for.

This setting allows you to apply create_* settings to domain admin accounts. Specify g_access_group names and domain admins in these groups will have create_* settings applied to them when adding users in the domain admin interface.

Syntax: g_create_apply string

g_create_badnames - List of illegal usernames

Comma separated list of illegal usernames, may contain wild cards, if username contains part of a non-wild card or matches a wildcard it is disallowed.

Syntax: g_create_badnames string

g_create_cleanup - Cleanup existing data before adding a user

This causes a delete to be actioned for a user before/as they are created. This ensures the new user does not end up with any files, on any mailing lists, with any aliases etc from a previous user of the same name/address. If you delete users from the authent database directly i.e. not using the surgemail web admin or calling 'tellmail delete_user' then this setting will cleanup the users files when their address is re-used.

Syntax: g_create_cleanup bool

g_create_dictionary - File containing dictionary words to compare passwords to

Text file containing one word per line, passwords are compared to all words longer than 4 characters in this file, if a username or password contains a word in this file it is not allowed. Only takes effect if g_create_strict is checked.

Syntax: g_create_dictionary string

g_create_pass_length - Limit the length of user passwords

This is applied during user self creation and when users change passwords. Set admin to true to restrict the domain and global admin also.

Syntax: g_create_pass_length min=int max=int admin=bool

g_create_record_ip - Causes surgemail to store ipnum in the authent database

This setting has no further documentation currently available

Syntax: g_create_record_ip bool

g_create_strict - Whether to apply strict rules to usernames/passwords

Checking this causes surgemail to check passwords do not contain words longer than 4 characters from g_create_dictionary as well as requiring the password to be 6+ characters, and usernames/passwords to contain more than 1 character.

Syntax: g_create_strict bool

g_create_strict_admin - Enforce strict rules for admins too, set g_create_strict AS WELL!!

This setting has no further documentation currently available

Syntax: g_create_strict_admin bool

g_create_user_length - Limit the length of usernames

This is applied during user self creation. Set admin to true to restrict the domain and global admin also.

Syntax: g_create_user_length min=int max=int admin=bool

g_dbabble_links - Add web links to DBabble from other web interfaces (and vice versa)

This causes links to appear in the DBabble interface to switch to using WebMail (and SurgePlus if you have the g_surgeplus_links setting on).

Syntax: g_dbabble_links bool

See also: g_dbabble_smtp_port, g_dbabble_smtp_prefix

g_dbabble_smtp_port - DBabble SMTP port (do not manually change this setting - it should be set from the DBabble section of the web admin interface only)

This setting specifies the port that DBabble listens on. DBabble looks at surgemail.ini and if it sees this setting, overrides it's own setting with this value. When you save changes to this setting from within the SurgeMail DBabble admin interface, SurgeMail automatically sets appropriate values for the g_redirect_iflocal and g_gateway settings.

Syntax: g_dbabble_smtp_port int

See also: g_dbabble_smtp_prefix, g_dbabble_links

g_dbabble_smtp_prefix - DBabble SMTP prefix (do not manually change this setting - it should be set from the DBabble section of the web admin interface only)

This setting is used in conjunction with the dbabble_smtp_port setting to forward all mail with the specified prefix on to DBabble.

Syntax: g_dbabble_smtp_prefix string

See also: g_dbabble_smtp_port, g_dbabble_links

g_debug_crt - Some CRT debugging on windows, do not use

This setting has no further documentation currently available

Syntax: g_debug_crt bool

g_debug_free - Check free memory isn't corrupted - slows performance slightly

This is for tracking a particular bug, not for general use

Syntax: g_debug_free bool

g_debug_ini - Debugging, don't use this

This is a temp setting used for testing

Syntax: g_debug_ini bool

g_debug_vanished - Name of file to check for, if file vanishes, crash

This is for tracking a particular bug, not for general use

Syntax: g_debug_vanished string

g_delete_exclude - Field and value that excludes an account from g_delete_user_after

If the authent response includes this field/value pair then the user account will not expire

Syntax: g_delete_exclude field=string value=string

Example: field="noexpire" value="true"

See also: g_acctlog_authonly, g_authent_always, g_authent_any, g_authent_allow_badascii, g_authent_prefix_sep, g_authent_process, g_authent_cachelife, g_authent_cachebad, g_authent_cachesize, g_authent_domain, g_authent_encrypt_key, g_authent_number, g_authent_info, g_authent_info_grp, g_authent_ip, g_authent_path_broken, g_authent_single, g_authent_spaces, g_authent_strip_domain, g_authent_restart, g_authent_logall, g_authent_fwdfile, g_authent_timeout, g_authent_last_login, g_auth_hide, g_auth_norelay, g_auth_skipgateway

g_delete_user_after - Number of days an account can remain unread before it is deleted

DO NOT USE THIS SETTING IN A MIRROR/CLUSTER SETUP

Number of days an account can remain unread before it is deleted. This setting cannot be used on an authent_domain FALSE domain unless it has a prefix setting.

Syntax: g_delete_user_after int

g_delete_user_mode - What to do when an account is unread

DO NOT USE THIS SETTING IN A MIRROR/CLUSTER SETUP

You can set this to "file" or "suspend". "file" causes accounts to be written to the users_delete.rec file, which you can action by running "tellmail delete_user FILE" or "tellmail delete_user FILE users_delete.rec" (optionally specify the file). "suspend" causes accounts to be suspend, it does this by setting the field and value specified in the g_delete_user_suspend setting.

If this setting is blank the default is to use 'file' mode, accounts are NEVER deleted automatically except in the very oldest versions of surgemail (before version 3)

Syntax: g_delete_user_mode string

g_delete_user_suspend - If suspending an unread account set this field/value

DO NOT USE THIS SETTING IN A MIRROR/CLUSTER SETUP

Set the field and value to use when suspending an account due to g_delete_user_after and the g_delete_user_mode "suspend" settings.

Syntax: g_delete_user_suspend field=string value=string

g_deny - Deny users from some IP ranges

Block known spammers etc by IP address. You can use wild cards and 'not' signs, e.g. "!*,127.*,10.*" 

Syntax: g_deny string

g_deny_msg - Deny message

Message to give to users who are disconnected due to the above 'deny' setting. 

Syntax: g_deny_msg string

g_deny_smtp - Deny SMTP based on IP address

Block users from some IP ranges connecting to SMTP only. 

Syntax: g_deny_smtp string

g_disable_exclude - Field and value that excludes an account from g_disable_smtp_after

If the authent response includes this field/value pair then the user account will not be disabled from receiving messages

Syntax: g_disable_exclude field=string value=string

Example: field="noexpire" value="true"

See also: g_disable_smtp_after

g_disable_skip - Ip address of senders to accept email from even if user account is disabled due to g_disable_smtp_after

Useful to ensure delivery for important company notices

Syntax: g_disable_skip string

g_disable_smtp_after - Number of days an account can remain unread before delivery is disabled

DO NOT USE THIS SETTING IN A MIRROR/CLUSTER SETUP

Number of days an account can remain unread before delivery is disabled. 

Syntax: g_disable_smtp_after int

g_disable_surgeplus - Disable SurgePlus Calendar and File Sharing client

Disable users from logging in using the SurgePlus Calendar and File Sharing client. See SurgePlus

Syntax: g_disable_surgeplus bool

See also: old_xfile, xfile_url, disable_surgeplus, surgeplus_pop_server_name, surgeplus_smtp_server_name, g_xfile_allow, g_surgeplus_links, g_disable_surgeplus_updates, g_surgeplus_log_level, g_surgeplus_port, g_surgeplus_secure_port, g_surgeplus_web_port, g_surgeplus_web_url, g_surgeplus_hide_client_downloads, g_surgeplus_pop_server_name, g_surgeplus_smtp_server_name, g_surgeplus_delay_tell_upgrade, g_surgeplus_delay_tell_upgrade_exempt, g_surgeplus_online

g_disable_surgeplus_updates - Disable automated downloading of new versions of SurgePlus client from netwinsite.com

New versions of the SurgePlus client are automatically downloaded from netwinsite.com and made available for download form your server by your users. See SurgePlus

Syntax: g_disable_surgeplus_updates bool

See also: disable_surgeplus, g_disable_surgeplus, g_surgeplus_delay_tell_upgrade, g_surgeplus_delay_tell_upgrade_exempt

g_diskio_abort - Shutdown if diskIO failure on queue files

Intended to make server die rather than to pretend to keep running when a major disk fault has occurred

Syntax: g_diskio_abort bool

g_dlist_nolocal - Remove add local button from mailing lists

Prevents address havesting etc by users - strongly recommended on public servers, not necessary on small or private servers

Syntax: g_dlist_nolocal bool

g_dlist_nostart - Disable dlist

If set disable (do not attempt to start) dlist for DMail compatibility mode.. 

Syntax: g_dlist_nostart bool

g_dlist_path - Path for dlist

DList Path normally defaults to $g_home/dlist.

Syntax: g_dlist_path string

g_dns_cache_size - Set size of forward dns cache, default 7000

Best not to change this normally

Syntax: g_dns_cache_size int

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_host - DNS host(s) for MX lookups

This setting can normally be left blank as the mail server will find your system DNS settings. However, you can specify one or more DNS servers for the mail server to use instead to lookup names. 

DNS lookups are cached to disk so SurgeMail will generally continue to work even if your dns server is temporarily unavailable.

Test your dns server with this command. If working it should return two ip addresses for that domain.

 	tellmail dns_test "netwinsite.com"

Prior to SurgeMail 2.0h dns lookups were done using tcp instead of udp, they are now down with UDP unless the response exceeds UDP packet size (as per RFC).

NOTE: All dns servers listed in this setting must be fully recursive, a non recursive dns server will create many dns lookup failures!

Syntax: g_dns_host string

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_match_msg - Message for stamp or bounce if forward and reverse lookup don't match

The message given to the user when the forwar/reverse dns lookup doesn't match

Syntax: g_dns_match_msg string

Example: "Sorry your ip address doesn't translate into a name that translates into your ip address"

See also: g_dns_paranoid, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_nlookup - Concurrent MX lookups

Concurrent DNS lookups to send to DNS server (Default=20) (not used after version 2.0h)

Syntax: g_dns_nlookup int

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_nocache - Disables DNS cache for spf lookups (20 minute life)

This setting disables the small cache used for SPF lookups to improve performance.

Syntax: g_dns_nocache bool

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_noptr - Set to reject or retry, for ip addresses with no reverse dns entry (rdns)

If the ip number of a connecting user has no associated name in the reverse dns database then the connection is rejected or told to retry later.

Syntax: g_dns_noptr string

Example: "retry"

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_noptr_msg - Message for stamp or bounce if DNS lookup fails on ip address

See short description.

Syntax: g_dns_noptr_msg string

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_noptr_skip - Skip RDNS for these ip addresses

This is an over-ride for local addresses which you trust.

Syntax: g_dns_noptr_skip string

Example: "retry"

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_paranoid - Compare sender forward and reverse dns lookup and see if they match

Does a forward DNS lookup on the sender's domain and matches this with a reverse lookup of the senders IP address. If these do not match the message is either bounced or stamped with the header "X-DNS-Paranoid: <explanation>". Valid values for this field are "STAMP","RETRY" and "REJECT".

STAMP = Add the X-DNS-Paranoid header if it fails

RETRY = Bounce the message with a 450 error. (so if the failure was temporary the sending server will retry)

REJECT = Bounce the message with a 550 error

Set g_dns_lookup_msg or g_dns_match_msg to define the reject/stamp strings respectively.

g_dns_require - Require reverse DNS names match

Require MAIL FROM header to match the reverse dns lookup based of the sender based on the sender's IP.

eg. from=*@hotmail.com hosts=*hotmail.com

Syntax: g_dns_paranoid string

See also: g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_require - Require MAIL FROM header matches senders ip reverse dns

This setting predates SPF which does the same sort of thing on a grander scale, no longer needed.

Syntax: g_dns_require from=string hosts=string

Example: from=*@hotmail.com hosts=*hotmail.com

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_system - Use system code to do reverse lookups

If all channels hang in a state 'lookup' then turn this off so it will use the surgemail code for reverse dns lookups. This setting used to be g_dns_lookup and had the opposite meaning, we reversed it because the system dns code was faulty so often

Syntax: g_dns_system bool

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_dns_translate - If mx response is x.x.x.x translate to y.y.y.y:port

Useful for translating ip numbers inside a local intranet and doing other fancy routing of various sorts.

Syntax: g_dns_translate from=string to=string

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_old, g_dns_new, g_spf_dns_timeout

g_domadmin_utoken_expire - Length of time a domain admin login token is valid for in seconds

Default unit is seconds. You can specify units e.g. 3 minutes, 10 hours etc...

Syntax: g_domadmin_utoken_expire int

g_domadmin_utoken_idle - Length of time a domain admin login token may remain idle for

This setting has no further documentation currently available

Syntax: g_domadmin_utoken_idle int

g_domain_default - Default domain when POP/IMAP user does not specify one

This is probably not what you think it is, generally the 'first' domain in surgemail.ini is used in this situation, but in some instances, when using domuser.dat for example to translate users back to virtual domains, you will want the default domain to be a 'generic' made up domain that doesn't really exist.

For example lets say you have users fred@a.com, bob@b.com, then in domusers.dat you have

fred@a.com fred@a.com
bob@b.com bob@b.com
bob@xxx bob@b.com
fred@xxx fred@a.com

And the result is that users who login to pop as bob or fred, will be correctly mapped to the correct virtual domain user even though the actual domain is different in those two cases.

Clear as mud I expect?

Syntax: g_domain_default string

g_domain_list_max - Maximum number of domains to list at once

Maximum number of domains to list at once in the admin user interface. 

Syntax: g_domain_list_max int

g_domain_separator - Separator characters for virtual POP

For POP logins where your virtual domain is NOT distinguished by IP address users can login with 'user@domain' or user/domain.name etc and the mail server will pickup the domain name correctly. By default only 'user@domain.name' is accepted unless this setting is used which can be useful for brain dead mail clients which don't allow the user to specify 'user@domain.name' as the username eg:

g_domain_separator "/"

Syntax: g_domain_separator string

g_domainkeys_check - Check incoming DomainKeys signatures (beta may be unstable)

See domainkeys.htm

Syntax: g_domainkeys_check bool

g_domainkeys_headers - List which headers to sign

This will help get the message through gateways without breaking the signature, try a single header, e.g. from

Syntax: g_domainkeys_headers string

g_domainkeys_only - Domains to sign for outgoing email

Normally all local domains are signed, but if this setting exists then it is used instead so you must list local domains as well as non local ones you want to sign messages for. G_domainkeys_sign must also be set to true!

Syntax: g_domainkeys_only string

g_domainkeys_selector - Policy name for your server (used creating dns entry for domainkeys)

This defines the dns entry name for your policy record and public key entry in your dns. See domainkeys.htm for details

Syntax: g_domainkeys_selector string

g_domainkeys_sign - Sign outgoing messages (create a key first using web admin)

To turn off domainkeys for some domains see the per domain setting, domainkeys_disable. See domainkeys.htm for more info.

Syntax: g_domainkeys_sign bool

g_domuser_file - Domain users to thousands of virtual domains easily

Specifies a file which contains lines that translate an email address to the username that should be looked up in the database. This file can contain a domain name not previously specified in surgemail.ini allowing you to create unique sub-domain addresses. eg:

g_domuser_file "c:\surgemail\domuser.dat"

Example entries...

*@domain.com postmaster@domain.com
userA@domain.com userB@domain.com
firstname@lastname.domain.com firstname@lastname.domain.com

Syntax: g_domuser_file string

g_dotlock_minutes - NFS lock waits

Minutes to wait for nfs lock file, default 20 minutes.

Syntax: g_dotlock_minutes int

g_dotstuff_fix - Convert the way mail is stored on disk from dotstuffed to non dot stuffed (beta)

In the dotstuffed format any attachments that have content (in encoded format) starting with a . get corrupted, as all single '.' characters at the start of a line are converted to '..'. This is only very seldomly an issue as encoded text doesn't usually have . characters. This feature can only be enabled and still need furhter production level testing to make sure there are no side effects... so if you play with it consider yourself adequately warned :-)

Syntax: g_dotstuff_fix bool

g_download - Fetch an http file and do an ini reload

Can be used with g_include to have settings fetched from a central location, the file is fetched once an hour.

Syntax: g_download url=string user=string pass=string local=string

g_drop_use_len - Use the content-len header for drop file processing

For use on Solaris when using sendmail for incoming mail delivery.

Syntax: g_drop_use_len bool

g_dsn_enable - Enable DSN (Delivery Status Notification) esmtp extension.

Not recommended. Delivery Status Notification is used by spammers to find addresses to spam to.

Syntax: g_dsn_enable bool

See also: g_dsn_nofinal

g_dsn_nofinal - Try not to show real final recepients but just original recipients

This setting helps hide internal addresses in bounce messages (after forwarding etc). Not recommended.

Syntax: g_dsn_nofinal bool

See also: g_dsn_enable

g_ehlo_simple - Ip addresses to give simple ehlo respone to

This is a debugging setting, do not use.

Syntax: g_ehlo_simple string

g_encrypt_expire - Days to keep encrypted messages, default 60

When a message is sent via encryption it is deleted after this many days

Syntax: g_encrypt_expire int

g_encrypt_inline - Use INLINE method by default

Sets the default encryption method when a rule does not apply

Syntax: g_encrypt_inline bool

g_encrypt_max - Max encrypted per day server wide

Server wide limit to prevent abuse (or accidental over use)

Syntax: g_encrypt_max int

g_encrypt_path - Path to encrypted files, this is not supported when mirroring!

DO NOT USE

Syntax: g_encrypt_path string

g_encrypt_pw_host - Central host for encryption password storage

DO NOT USE

Syntax: g_encrypt_pw_host string

g_encrypt_pw_key - Central host password key

DO NOT USE

Syntax: g_encrypt_pw_key string

g_encrypt_reply_plain - Send plain message for local replies

By default a reply to a local user is also encrypted this makes it not encrypt the reply as user should be reading the message via SSL so the data is secure anyway.

Syntax: g_encrypt_reply_plain bool

g_encrypt_ssl_force - Require ssl on incoming encrypted messages

When a message is going to be encrypted this setting ensures it is sent from the user to the server via SSL

Syntax: g_encrypt_ssl_force bool

g_encrypt_ssl_noforce - Exceptions, e.g. surgeweb or localhost

When a message is going to be encrypted this setting ensures it is sent from the user to the server via SSL

Syntax: g_encrypt_ssl_noforce string

g_encrypt_surgeweb_show - Show SurgeVault in SurgeWeb

Enables the display of surgevault encryption in the surgeweb interface (can be modified using encrypt_hide on surgeweb customisation page)

Syntax: g_encrypt_surgeweb_show bool

g_enotify_from - From address to use in email notification messages

This setting has no further documentation currently available

Syntax: g_enotify_from string

g_eof_fix_off - Turns off auto stripping of control+Z

These characters can break some mail clients and should not appear in normal emails

Syntax: g_eof_fix_off bool

g_error_xlate - Change error messages

If wild card string matches smtp response code, then replace with 'to' response code, use %1 to replace the first wild card match etc...

Syntax: g_error_xlate was=string to=string

g_expire_every - Only expire spool once every 'n' days

Reduce load spent expiring old messages.

Syntax: g_expire_every int

See also: expire_age, expire_size, expire_rule, g_encrypt_expire, g_expire_trash, g_expire_silent, g_expire_warning, g_user_utoken_expire, g_admin_utoken_expire, g_domadmin_utoken_expire

g_expire_silent - Don't send users emails telling them what was expired.

Some users get upset when they find messages have expired, this setting makes the expiration silent so the users don't even notice. I think this is a bit nuts myself but some admins prefer it

Syntax: g_expire_silent bool

See also: expire_age, expire_size, expire_rule, g_encrypt_expire, g_expire_trash, g_expire_every, g_expire_warning, g_user_utoken_expire, g_admin_utoken_expire, g_domadmin_utoken_expire

g_expire_trash - Expire any messages found in trash folders

Expires any messages more than 7 days old found in the 'trash' folder.

Syntax: g_expire_trash bool

See also: expire_age, expire_size, expire_rule, g_encrypt_expire, g_expire_silent, g_expire_every, g_expire_warning, g_user_utoken_expire, g_admin_utoken_expire, g_domadmin_utoken_expire

g_expire_warning - Give warning 'n' days before deleting each file

This will help warn users before a file is actually deleted.

Syntax: g_expire_warning int

See also: expire_age, expire_size, expire_rule, g_encrypt_expire, g_expire_trash, g_expire_silent, g_expire_every, g_user_utoken_expire, g_admin_utoken_expire, g_domadmin_utoken_expire

g_external_ip_disable - Do not add X-External-IP header

Please note you may wish to remove x_originating_ip true from webmail.ini as well

Syntax: g_external_ip_disable bool

g_fallback - Fallback address

Default address for all local domains. If a local delivery is not to any valid user Emails will be delivered to this address. There is also a per domain default. 

We want to stress that this is a dangerous setting, you use at your own peril.
Spammers will turn up to your server and test sending to accounts, they will just run through a dictionary of names, with a fallback setting you will be telling the spammer that all these accounts exist. The spammer will then deliver spam to these addresses in volumes that can cripple a server almost.

Syntax: g_fallback string

g_fallback_relay_if_exists - Use FALLBACK_RELAY if not logged in but user exists (OLD_POPHOST_CREATEUSER_DISABLE)

This can be used to relay users where you have a user database that can be checked on the front end system directly (odbcauth, tcpauth, etc)

Syntax: g_fallback_relay_if_exists bool

See also: surgewall, surgewall_auth, surgewall_local_too, surgewall_options, surgewall_capa_local, g_surgewall_split

g_filter_max - Max size of messages to send through the filter pipe

Messages over this size (in bytes) are skipped. default = no limit

Syntax: g_filter_max int

g_filter_n - Number of filters to run simultaneously

Default is 20, when this limit is reached the incoming thread waits a few seconds then skips the filter if necessary, this is intended to prevent a log jam/melt down effect.

Syntax: g_filter_n int

g_filter_pipe - Filter pipe allowing external message processing

This allows external applications to filter and modify incoming messages. Example: Integration with Spam Assassin (on UNIX) could be achieved as follows:

g_filter_pipe "/usr/local/bin/spamassassin -P"

it expects a normal unix 'filter' so, read the message on 'stdin' and write the identical (or modified) message to 'stdout'.

The input will be 'crlf' terminated and so should the output file.

That's all you can do with this mechanism, if you want to bounce the message or flag it as spam you 'add' a header and then use something in surgemail to detect and act on the header you've added (mfilter)

Syntax: g_filter_pipe string

g_filter_pipe_noauth - Skip for auth users

Skip for authenticated users

Syntax: g_filter_pipe_noauth bool

g_filter_pipe_skip - Skip filter if ip matches this

Set this for local servers that don't need filtering, e.g. mailing list servers, local trusted robots.

Syntax: g_filter_pipe_skip string

g_filter_timeout - Filter pipe timeout

Filter timeout (g_filter_pipe) in seconds, default is 360.

Syntax: g_filter_timeout int

g_fix_crcrlf - Fix email messages containing crcrlf for line termination

This is best not used, it's best to fix the faulty email application, results are not gauranteed.

Syntax: g_fix_crcrlf bool

g_fix_imap_lf - During IMAP import fix email messages containing lf

This is best not used, it's best to fix the faulty email server, results are not gauranteed.

Syntax: g_fix_imap_lf bool

g_footer_file - Footer file

Footer file which is appended to all plain text mail messages.

Syntax: g_footer_file string

g_footer_html - Footer file (HTML mail)

Footer file which is appended to all HTML mail messages.

Syntax: g_footer_html string

g_footer_notfound - Only add footer if footer is not in message already

This works by examining the message contents to try and find part of the footer.

Syntax: g_footer_notfound bool

g_footer_send - Footer file (outbound only)

Plain text footer file which is appended to all outbound mail messages only.

Syntax: g_footer_send string

g_footer_sendonly - Enable outbound footer

Add g_footer_send to all messages when sending to non local users.

Syntax: g_footer_sendonly bool

g_footer_skip - Skip footers for these users

This skips the footer for matching users (e.g. cell phones etc)

Syntax: g_footer_skip string

g_footer_trusted - Only add footers if sender is trusted

This prevents the footer from being added for a message that pretends to come from your domain.

Syntax: g_footer_trusted bool

g_forward_attach - When late forwarding send as attachment to these domains

Useful with hotmail.com, aol.com etc so that forwarded messages are not mistaken for spam

Syntax: g_forward_attach string

g_forward_illegal - Prevents users setting forward rules to certain addresses

Syntax: g_forward_illegal to="address" apply="user type "

This setting allows you to specify some addresses as being illegal for certain users. This stops users setting up forwarding rules to these addresses. They can still send mail to these addresses manually with their email client. These rules _ONLY_ apply to non local domains.

Some examples:

If you want to stop your users setting up forward rules that redirect to aol.com.
g_forward_illegal to="*@aol.com" apply="user"

If you want to stop your users setting a forward to all domains except aol.com
g_forward_illegal to="*,!*@aol.com" apply="user"

Stop domain admins sending to aol.com
g_forward_illegal to="*@aol.com" apply="domadmin"

Stop admins sending to netwinsite.com
g_forward_illegal to="*@netwinsite.com" apply="admin"

Syntax: g_forward_illegal to=string apply=string

g_forward_oops - Internal testing setting, not for general use sorry

Testing setting, please do not use.

Syntax: g_forward_oops string

g_friends_add_trusted - Add to friends list when if sender is trusted

This is useful if senders are not using smtp auth but you still want friends to be added, typically used with surgewall...

Syntax: g_friends_add_trusted bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_allow_spf - Allow all email through as if it was a friend during temporary allow

The user click on a button to disable friends for a few hours, during this time all messages will get treated as a friend and thus bypass SPF too.

Syntax: g_friends_allow_spf bool

g_friends_always - Always use friends list.

This enables the "Add all outgoing email addresses to list" feature and always checks incoming messages against the friends list so that SurgeMail can correctly tag or filter it.

Syntax: g_friends_always bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_at_rcpt - Whether to check users friends list at rcpt stage

This setting is automatically added/removed by the web admin when global friends defaults are configured. It allows us to check friends at rcpt stage without paying a disk access cost for non-friends users.

Syntax: g_friends_at_rcpt bool

g_friends_bounce_rej - Reject blank return path as friends failures

This setting has no further documentation currently available

Syntax: g_friends_bounce_rej bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_bounce_second - Bounce the next time the user sends a message if waiting for confirm still

This can make it clearer that email is not getting through to the destination

Syntax: g_friends_bounce_second bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_byweb - Perform confirmation of pending via the web.

This gives a confirmation url to the sender in the friends confirmation message and disables confirmation by replying. The url gives a page with a verification image, the sender types the number seen and releases their message.

Syntax: g_friends_byweb bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_check_spf - Disable friends bounces if SPF headers missing/failed to avoid backscatter.

If the incoming message may be forged it will bounce messages using an smtp error code to deny delivery but it will allow any real sender to bypass this. This settings is good if spamcop block your domain for sending friends challenges as it cuts down on the number of such messages. This avoids backscatter

Syntax: g_friends_check_spf bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_confirm_debug - Log sucessful friends confirmation responses

This enables us to examine suspect replies to friends confirmations for indications that they were sent by spammers or mail robots.

Syntax: g_friends_confirm_debug bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_confirm_subject - String to use as the subject of a friends confirmation email

String to use as the subject of a friends confirmation email. Defaults to: "Please reply to message and allow delivery". This value must contain the text , this text is replaced by the unique message id that allows SurgeMail to find the message to release eg. confirm(1150419513.1880_1180.domain). It is also advisable to place the near the start of the string as some clients will truncate long subjects and any truncation of the value will result in failure to release the message.

Syntax: g_friends_confirm_subject string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_default_autoadd - Default auto addition when sending (recommended)

This setting has no further documentation currently available

Syntax: g_friends_default_autoadd bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_default_mode - Default friends mode (Recommended 'list')

This setting has no further documentation currently available

Syntax: g_friends_default_mode string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_ignore - List of addresses considered friends for all users on the system

List of addresses considered friends for all users on the system eg: the system manager email address

Syntax: g_friends_ignore string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_ignore_trusted - If from trusted ip still apply friends

Useful when you have a gateway that is sending to surgemail

Syntax: g_friends_ignore_trusted bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_latest_headers - Friends system re-read message headers

Causes friends to re-read message headers, allowing rules based on headers added during delivery

Syntax: g_friends_latest_headers bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_name - What to call the friends system

This specifies what to call the friends system when referring to it on web pages and in email to our users, you can call it whatever you like

Syntax: g_friends_name string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_old_status_email - Use older status email & processing

Use status.eml instead of status_html.eml

Syntax: g_friends_old_status_email bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_only - Friends system

An anti-spam feature which screens incoming mail to ensure it comes from a human. For incoming mail from unknown addresses a message is sent to this person requesting them to reply to confirm they are human and the original message will be delivered. See this page for more details.

Syntax: g_friends_only bool

See also: friends_at_rcpt, friends_pending_name, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_pending_keep - Time to keep friend pending messages

How long to store users friends pending messages before deleting them (days)

Syntax: g_friends_pending_keep int

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_pending_name - The imap name of the friends_pending (and spam store) quarantine folder - should match surgeweb imap_spam_folder - default is 'Friends Pending'

This shouldn't be changed unless this feature has not been used before as it will confuse your users. Any matching folder the user has of the same name will become invisible. So at least make it something other than simply Spam!!

Syntax: g_friends_pending_name string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_pending_vanish - Enable auto-vanish of pending messages on confirmation bounce

When a bounce for a confirmation message is received we vanish it, this setting will also delete the original message.

Syntax: g_friends_pending_vanish bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_release_wash - Clean any subject marking (ie stars) when releasing/allowing

This setting has no further documentation currently available

Syntax: g_friends_release_wash bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_rotate - Rotate user level log file, default 30k

Set log size, the log is also rotated when a friends report email is sent (if configured)

Syntax: g_friends_rotate int

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_short - In friends web release addresses use a shortened url

This can help prevent urls being wraped by dumb email clients, this feature requires an updated template file na_rel_link.htm with the 'f' hidden input field,e.g. input type="hidden" name="f" value=""

Syntax: g_friends_short bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_silent - Disable friends responses to users

This setting is to simply disable the confirm emails, not generally recommended as this makes friends a bit pointless.

Syntax: g_friends_silent bool

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_ignore, g_friends_skip_ip, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_skip_ip - List of ip addresses considered friends for all users on the system

This setting has no further documentation currently available

Syntax: g_friends_skip_ip string

See also: friends_at_rcpt, friends_pending_name, g_friends_only, g_friends_bounce_rej, g_friends_name, g_friends_pending_name, g_friends_silent, g_friends_ignore, g_friends_confirm_subject, g_friends_default_mode, g_friends_default_autoadd, g_friends_latest_headers, g_friends_pending_keep, g_friends_pending_vanish, g_friends_at_rcpt, g_friends_allow_spf, g_friends_spf_fail_bounce, g_friends_check_spf, g_friends_byweb, g_friends_always, g_friends_add_trusted, g_friends_confirm_debug, g_friends_rotate, g_friends_short, g_friends_ignore_trusted, g_friends_url, g_friends_bounce_second, g_friends_old_status_email, g_friends_spam_score, g_friends_release_wash, g_imap_friends, g_quota_friends, g_user_friends_domain_log_disable, g_user_friends_log_disable

g_friends_spam_score - Default spam score for friends spam scoring (surgeweb defaults likely=4 or almost_certain=10)

This setting has no further documentation currently available

Syntax: g_friends_spam_score int

g_friends_spf_fail_bounce - Bounce SPF failures, do not send friends confirmations (Not recommended)

The default behaviour is to only send confirmations if SPF checks pass, if they fail friends checking is skipped, no confirmation request is sent and the email is not blocked by friends.

Syntax: g_friends_spf_fail_bounce bool

g_friends_url - Specify full url for friends release http://domain.name:port

Normally the default will work.

Syntax: g_friends_url string

g_from_allow - From header allow

From headers to allow bypassing the g_from* checks. e.g. "*@x.y.com,*@b.com,fred@bb.com"

Syntax: g_from_allow string

g_from_allow_ip - IP addresses to bypass local from check

This setting has no further documentation currently available

Syntax: g_from_allow_ip string

g_from_allow_to - destination user to bypass local from check

This setting has no further documentation currently available

Syntax: g_from_allow_to string

g_from_bl - Domain Based Blacklist Zones, lookups FROM domain in dns

The 'from' domain is checked against the specified RBL which must be a special 'FROM' based rbl which lists spammers by from address. Most spammers fake from addresses so this is a fairly marginally useful method.

Syntax: g_from_bl name=string stamp=string

See also: g_honeypot_rbl, g_myrbl_testing, g_myrbl_to, g_myrbl_store, g_spam_allow_rbl, g_surbl, g_surbl_reject, g_surbl_whois, g_surbl_skip, g_surbl_skip_ip

g_from_bounce - Bounce if from is probably faked

Bounce if from address is probably faked.

This check is activated for any mail with a local domain in the from address but not using SMTP authentcation, relay allow IP address or spam allow IP address.

Syntax: g_from_bounce bool

g_from_check - Check from matches valid local domain

Check from domains match valid local domains if user is authenticated, or g_from_allow.

Syntax: g_from_check bool

g_from_domain - Default domain for from envelope

Fixes the 'from' envelope if the email client failed to specify a domain name, this doesn't fix the from header currently but we may change that in future!

Syntax: g_from_domain string

g_from_exact - Check from matches authenticated user

Check from matches authenticated user. If user is not authenticated the setting is skipped.

Should be used with g_from_bounce "true" which basically forces them to authenticate and then makes this setting work properly.

Syntax: g_from_exact bool

g_from_header - From header used in delivery bounces

From header used in delivery bounces.

Syntax: g_from_header string

g_from_must_exist - Require local from addresses to exist or reject mail

Can be useful in blocking dumb spam robots

Syntax: g_from_must_exist bool

g_from_noforge - If envelope or from is local domain then the other must be too

This can prevent many common forms of forgery, this will bounce some real email, so probably better to use the noforgeme setting instead. One of the settings to prevent forgery

Syntax: g_from_noforge bool

g_from_noforge_some - If from matches this then from/envelope must match

Prevent forgeries of important local addresses, e.g. *support*

Syntax: g_from_noforge_some string

g_from_noforgeme - If to==from then from and env from must match

This can prevent many common forms of forgery, this is safer than the noforge setting above, and generally almost as effective. One of the settings to prevent forgery

Syntax: g_from_noforgeme bool

g_from_relay - If not authenticated and g_relay_allow_ip matched then block if not local domain or whitelisted

This one helps prevent a local virus sending out spam. It basically says non authenticated users who can relay due to a g_relay_allow_ip rule must send from one of your domains or use smtp authentication or be in a white list. Note this test is performed on the message envelope not the body. We recommend insisting on smtp authentication to reduce your risk of this type of problem.

Syntax: g_from_relay bool

g_from_relay_white - White list of domains for g_from_relay setting

This is domains that can be used as a 'from' address for non authenticated users, in addition to local domains

Syntax: g_from_relay_white string

g_from_rewrite - Rewrite from envelope for outgoing email, e.g. *@this.domain -> %1@another.domain

This lets you change the 'from' address from an internal domain name to a valid public domain name. The change is performed on the From envelope (return path), not the from header. And the chanage does not affect the return path written in local deliveries, only outgoing email. Mfilter rules can be used to rewrite the actual message headers.

Syntax: g_from_rewrite was=string to=string

g_from_rewrite_header - Rewrite the from header as well

Replaces the From: header in the mesage with the new address.

Syntax: g_from_rewrite_header bool

g_from_stamp - Stamp if from is probably faked

Stamp message with "X-Verify-Failed:" header if from address is probably faked.

eg: X-Verify-Failed: <user@mydomain.com> From mydomain.com is local but user not authenticated or from g_relay_allow_ip

This check is activated based on the same conditions as g_from_bounce.

Syntax: g_from_stamp bool

g_from_timeout - Timeout on g_badfrom_* checks

Timeout in seconds of g_badfrom_* checks. Default = 60 seconds. If this timeout is reached the g_badfrom check will be classed as having failed.

Syntax: g_from_timeout int

g_from_valid - Require an @ and dotted domain in all return addresses

This forces the sender to either give 'no' reply address or a valid one with an @ and a dotted domain

Syntax: g_from_valid bool

g_gateway - Gateway messages to a particular domain (Or smarthost)

Used to gateway messages to another local mail server.  Typically this other server is inside a fire wall so it's local IP address is not known by the DNS server.  You specify the domain and IP address to send messages to and this server is treated as 'local' rather than remote in terms of open relay restrictions. eg: nonauthenticated users are able to send in mail. Open relay restrictions do not apply to messages sent to this domain because they are considered as if they were local users and not 'relaying'. 

This setting has the fields domain(required), to(required), user(optional), pass(optional), relay=true/false(optional),check=true/false (optional)

Normally "domain" and "to" are the only fields that need to be filled in. eg. To relay mail from anyone to user accounts in the domain somedomain.com to the host 1.2.3.4.
g_gateway domain="somedomain.com" to="1.2.3.4"

user="username" pass="password"

If SMTP authentication is required on the destination server the user and pass fields need to be completed.

The check=true setting tells surgemail to actually connect to the server and check that recipients exist before accepting an incoming email for that user, this is STRONGLY recommended, as it stops the server having to bounce thousands of messages when spammers send to invalid addresses on your server. If SurgeMail cannot connect it will assume the user does exist so nothing is bounced except when the connection is successful.

Classic smarthost setting

This is where you want to send all outgoing email to another server, that may require authentication, note that we don't use relay="true" as that would make the server an open relay.

g_gateway domain="*" to="isp.mail.server" user="user@isp.server" pass="xxx"

relay="true" (warning, usually not needed or wise, this can make your server into an open relay for spammers to abuse!)

As a safety measure to prevent accidental openrelays, SurgeMail will not relay for non authenticated users or trusted users (users that are allowed to relay due to relaying settings eg g_relay_allow_ip) if the domain is "*". This can be overridden by placing "true" in the "relay" field. eg: To relay all mail for all users to host 1.2.3.4:

g_gateway domain="*" to="1.2.3.4" relay="false"

It is possible to use domain="c:\domains.txt" where domains.txt is a file listing the domains to be gatewayed, this should only be done for one gateway rule, and is only worth doing if you have thousands of domains to gateway.

local="true"

Requires that the destination addresses exist in the local account database.

Gateway after user lookup

When gatewaying to a domain which accepts all email regardless of address (e.g. exchange) you are best to define the users in your local user database, this is the only way to prevent nasty bounces and get rid of all the spam cleanly.

1) remove the gateway setting for the domain
2) add a virtual domain
3) In the virtual domain add surgewall settings, e.g. in this example I'm gatewaying the domain 'netwin.co.nz' to a
backend server called 'backend.netwin.co.nz"

vdomain address="" name="netwin.co.nz"
...
surgewall "backend.netwin.co.nz"
surgewall_options strip_domain="" proxy_failover="" auth_local="TRUE" pop="" smtp="" imap="" usercgi=""

 

You can find more gateway examples in our FAQ here http://www.netwinsite.com/surgemail/help/faq.htm#gateway

Syntax: g_gateway domain=string to=string user=string pass=string relay=string check=bool sms=bool local=bool

g_gateway_allow - Known hosts that act as incoming SMTP or surgewall servers for us

Some spam prevention mechanisms which use the ip address of the incoming system must be disabled for incoming SMTP servers/surgewall/firewall boxes so that stupid limits don't block all the incoming messages from your backup mx server etc. Settings this affects: g_tarpit_max, g_tarpit_max_remote, g_con_perip, RBL checks,

Syntax: g_gateway_allow string

See also: g_smtp_auth_debug, g_smtp_delay_stamp, g_smtp_welcome_delay

g_gateway_always - Always send to gateway even if local domain exists

Always send to gateway even if local domain exists. Not sure why you would want to use this setting other than to temporarily send mail on to another server whilst keeping the local domain and accounts intact and untouced.

Syntax: g_gateway_always bool

g_gateway_auth - Send SMTP auth requests to another host

Send SMTP auth requests to another host.

Syntax: g_gateway_auth string

g_gateway_data - Gateway at the data stage

To allow bounces to be handled cleanly gateway messages before responding to the data comman so bounces can go direct without being generated and creating back scatter.

Syntax: g_gateway_data bool

g_gateway_from - Pass 'from' header thru during gatewawy check

In some cases to verify an email address the correct 'from' must be passed through, normally this is a bad idea as it will cause spf failures, but it is sometimes necessary

Syntax: g_gateway_from bool

See also: disable_smtp_after, old_smtphost, old_smtphost_skip, smtp_auth_off, smtp_welcome, smtp_welcome_name, smtp_from_ip, surgeweb_backend_smtp, surgeplus_smtp_server_name, g_disable_smtp_after, g_dbabble_smtp_port, g_dbabble_smtp_prefix, g_deny_smtp, g_safe_smtp, g_manager_smtp, g_smtp_auth_debug, g_smtp_bounce_nslow, g_smtp_cmd_timeout, g_smtp_data_timeout, g_smtp_delay_stamp, g_smtp_welcome_delay, g_smtp_log_protocol, g_smtp_log_size, g_smtp_max, g_smtp_warning, g_smtp_max_reason, g_smtp_max_nolimit, g_smtp_maxbad, g_smtp_port, g_smtp_portauth, g_smtp_portforce, g_smtp_secure_port, g_smtp_vrfy_msg, g_smtp_etrn_auth, g_smtp_help_disable, g_smtp_cram_enable, g_smtp_no_brackets, g_smtp_big, g_smtp_fast_bounce, g_smtp_fix_nohead, g_smtp_thread, g_smtp_auth_off, g_smtp_auth_ip, g_smtp_noauth, g_smtp_noauthm, g_smtp_noauth_msg, g_verify_smtp, g_surgeplus_smtp_server_name

g_gateway_helo - Header that must exist in incoming bounces (g_send_helo) or bounces are dropped

An incoming filter can discard the majority of incoming bounces by using this setting to figure out if a bounce is valid without having to do a user lookup first! Usually this would be the setting g_send_helo from your 'outgoing' mail server, this setting can be a list of host names.

Syntax: g_gateway_helo string

See also: send_helo, g_ban_helo, g_helo_optional, g_send_helo, g_send_helo_from, g_send_helo_in, g_verify_helo

g_gateway_ifnot - Send mail to gateway in preference to local delivery unless IP matches

Syntax: g_gateway_ifnot string

g_gateway_ignorewild_ip - Ignore * gateway rules if from ip matches (allows outbound email scanning using gateway * to external scanner)

This setting has no further documentation currently available

Syntax: g_gateway_ignorewild_ip string

g_gateway_mx - If specified IP address is found in mx record for destination then allow relay (not recommended)

This can be useful if you have thousands of servers using your machine for mx backup and you want to allow them simply because the mx records exist, it's much better to use g_gateway or g_relay settings instead as this saves lookups and makes the results entirely more predictable :-)

Syntax: g_gateway_mx string

See also: disable_smtp_after, old_smtphost, old_smtphost_skip, smtp_auth_off, smtp_welcome, smtp_welcome_name, smtp_from_ip, surgeweb_backend_smtp, surgeplus_smtp_server_name, g_disable_smtp_after, g_dbabble_smtp_port, g_dbabble_smtp_prefix, g_deny_smtp, g_safe_smtp, g_manager_smtp, g_smtp_auth_debug, g_smtp_bounce_nslow, g_smtp_cmd_timeout, g_smtp_data_timeout, g_smtp_delay_stamp, g_smtp_welcome_delay, g_smtp_log_protocol, g_smtp_log_size, g_smtp_max, g_smtp_warning, g_smtp_max_reason, g_smtp_max_nolimit, g_smtp_maxbad, g_smtp_port, g_smtp_portauth, g_smtp_portforce, g_smtp_secure_port, g_smtp_vrfy_msg, g_smtp_etrn_auth, g_smtp_help_disable, g_smtp_cram_enable, g_smtp_no_brackets, g_smtp_big, g_smtp_fast_bounce, g_smtp_fix_nohead, g_smtp_thread, g_smtp_auth_off, g_smtp_auth_ip, g_smtp_noauth, g_smtp_noauthm, g_smtp_noauth_msg, g_verify_smtp, g_surgeplus_smtp_server_name

g_gateway_orcpt - Writes an original receipt header when forwarding a message, this may disclose multiple recipients, cc/bcc etc use only for tracking faults

This writes a header X-Rcpt-Original: ..., when forwarding a message to another server, good for tracking problems. This may disclose multiple hidden recipients, it should not be used normally

Syntax: g_gateway_orcpt bool

g_group_field - Group Field from authentication database

Based upon a match on an arbitrary field in the authentication database a user can be defined as being part of an access_group. All fields (field, value, group) are required. eg: To add the user to the access_group "paid_user" if the field "mystatus" has the value "fullaccess":

g_group_field field="mystatus" value="fullaccess" group="paid_user"

Syntax: g_group_field field=string value=string group=string

g_hack_detect_disable - Stop admin emails when users login with a weak password

Useful if you must have weak passwords for some reason

Syntax: g_hack_detect_disable bool

g_hacker_max - Login guesses for one ip address before we lockout the ip address

Stops hackers from guessing passwords every day until they find one

Syntax: g_hacker_max int

g_hacker_poison - Poison accounts that instantly blacklist ip address

If user tries to login with this account then their ip address is blocked from further logins

Syntax: g_hacker_poison string

g_hacker_whitelist - Ip addresses to avoid guessing issues

Whitelist for gateways or other systems that you expect multiple failed logins from (e.g. webmail host)

Syntax: g_hacker_whitelist string

g_header_out - Header to add to outgoing posts

Mail header to add to outgoing mailing list posts.

Syntax: g_header_out string

g_header_strip - Strip listed headers from incoming messages

Useful for stripping headers that you don't trust or don't want for some reason

Syntax: g_header_strip string

g_helo_optional - Make the SMTP Helo optional

Helo is optional for SMTP protocol (not recommended).

Syntax: g_helo_optional bool

g_home - Root directory of the mail server

This setting controls where the mail server runs including the many sub directories it creates below this directory for work files and log files for each domain. Not something you should generally change. 

Syntax: g_home string

g_honeypot_key - Key for HTTP RBL service www.projecthoneypot.org - not recommended

Do not share your key you can get a key for free from this web site. By defining this setting you will enable honeypot lookups, which in turn will block web imap pop and smtp authentication connections from listed sites, it does not block normal incoming email, but does reduce the permitted guess count to '1'. You can whitelist an ip address using g_spam_allow or g_hacker_whitelist, this setting will tend to cause false positives which will stop users logging in, we don't recommend you use this setting currently.

Syntax: g_honeypot_key string

g_honeypot_rbl - RBL name to lookup, typically dnsbl.httpbl.org

This is the name of the rbl database we are going to query

Syntax: g_honeypot_rbl string

g_http_proxy - Proxy web server for fetching files via HTTP

Proxy web server for fetching files if direct access fails. (mainly for updates to the spam prevention rules from netwinsite.com and for downloading the latest version of the SurgePlus Windows client to make available to your users.) 

Syntax: g_http_proxy string

g_imap_acl - Enable ACL (shared folders) in imap

This setting allows folders to be shared between users. See the domain setting 'imap_public'. Requires surgemail 3.9d or later! For this to work you will need an imap client that supports ACL's to create and map shared folders (.e.g. thunderbird)

Syntax: g_imap_acl bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_blacklist - Test if imap users are in rbl's and email admin

This lets you find any of your users who's ip address has been blacklisted, at most it will email once a day, any additional entries are logged in mail.err log file (search for 'blacklist')

Syntax: g_imap_blacklist bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_capa - Where to get the CAPABILITY value from

When you have suffix based domains and you're using SurgeWall the CAPABILITY request comes before the domain of the user is known. As such SurgeMail cannot determine whether to send the real servers CAPABILITY or it's own. This setting will choose the default behaviour, valid values are: Local, . By default SurgeMail defaults to the behaviour of the primary domain, if it's surgewall then it obtains the real server capability. "Local" defaults to SurgeMails own capability, and defaults to the real server capability.

Syntax: g_imap_capa string

g_imap_capa_strip - Capability values to hide

In some situations you might not want to advertise server capabilities, for example SURGEMAIL and XFLDDATA when they cause problems with SurgeWall operations. Or perhaps the IDLE capability. Specifying the capability strings to hide here will cause SurgeMail to stop advertising those capabilies.

Syntax: g_imap_capa_strip string

g_imap_cram_enable - Enable CRAM-MD5 authentication (requires nwauth 4.0h or greater)

Please note that CRAM-MD5 does have security implications, specifically it means that the local users password must be stored in a semi reversable state in the authent database. Also you must be using the new version of the NWAuth module.

Syntax: g_imap_cram_enable bool

See also: smtp_auth_off, surgewall_auth, g_acctlog_authonly, g_allow_user_authent_field_get, g_allow_user_authent_field_set, g_authent_always, g_authent_any, g_authent_allow_badascii, g_authent_prefix_sep, g_authent_process, g_authent_cachelife, g_authent_cachebad, g_authent_cachesize, g_authent_domain, g_authent_encrypt_key, g_authent_number, g_authent_info, g_authent_info_grp, g_authent_ip, g_authent_path_broken, g_authent_single, g_authent_spaces, g_authent_strip_domain, g_authent_restart, g_authent_logall, g_authent_fwdfile, g_authent_timeout, g_authent_last_login, g_auth_hide, g_auth_norelay, g_auth_skipgateway, g_mirror_nwauth, g_mirror_nwauth_always, g_filter_pipe_noauth, g_gateway_auth, g_smite_skip_auth, g_smtp_auth_debug, g_smtp_portauth, g_smtp_etrn_auth, g_smtp_auth_off, g_smtp_auth_ip, g_smtp_noauth, g_smtp_noauthm, g_smtp_noauth_msg, g_spam_check_auth, g_xauthuser_hide

g_imap_delay - Glob data into bigger packets, never use this

This setting has no further documentation currently available

Syntax: g_imap_delay bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_friends - Make the friends_pendign folder visible in imap

Setting to map the friends_pending folder into an imap folder. There is no corresponding setting for the 'held' folder as we believe people should always use the friends mechanism as it is a superset of the held folder in functionality

Syntax: g_imap_friends bool

g_imap_idle_nsf - The number of seconds before a complete directory rescan. To be use on NSF network drives

Number of seconds for IMAP IDLE to do directory rescan

Syntax: g_imap_idle_nsf int

g_imap_log_body - Log imap fetch body commands to msg*.rec log files

This only logs when a body or body part is read via imap

Syntax: g_imap_log_body bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_log_copy - Log imap copy commands to msg*.rec log files

This setting has no further documentation currently available

Syntax: g_imap_log_copy bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_log_flush - IMAP log flush

Flush IMAP log on every write (for debugging).

Syntax: g_imap_log_flush bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_log_header - Log imap fetch header commands to msg*.rec log files (not usually needed)

This logs rather a lot so may create excessive logging. Probably the log body setting is more wise.

Syntax: g_imap_log_header bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_log_protocol - Log IMAP protocol

Log IMAP protocol and other IMAP information to the mail.log file.

Syntax: g_imap_log_protocol bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_max_messages - The number of messages in a single imap folder, default 200000

This setting helps limit impact when a user has a large folder, it will fail to load a folder larger than this and report errors in the log, it does not prevent the folder from having messages added to it, and it does not inform the user that the problem has occurred, this setting is primarily to limit impact of a crazy user :-)

Syntax: g_imap_max_messages int

g_imap_no_internal_date - Disable the internal date output on IMAP commands

The RFC implementation of internal dateis broken wiht MS outlook. SurgeMail has been modified to conform to the outlook inplementation of internal date making this setting redundant..

Syntax: g_imap_no_internal_date bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_old - Revert to old imap module

Replace normal imap with old imap module, not recommended/supported

Syntax: g_imap_old bool

g_imap_old_ip - Revert to old imap module for some ip's

Replace normal imap with old imap module, not recommended/supported

Syntax: g_imap_old_ip string

g_imap_pop_burst - Always burst using imap code

Prevents redownloading messages if file indicating user is using imap is lost. Generally this setting is not needed and should not be used. Turning it on/off will result in users getting duplicate messagese if they are using POP and have leave on server ticked

Syntax: g_imap_pop_burst bool

g_imap_port - IMAP Port (default 143)

Specifies the PORT to listen for IMAP connections on. IMAP is an alternative to POP protocol where the messages and folders all exist on the server. This is ideal when sharing a mail account between several users or when using Email from more than one computer.  Use the keyword 'disabled' to disable this part of the surgemail service.

Syntax: g_imap_port int

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_search_noattach - Skip non text attachments when searching

This setting has no further documentation currently available

Syntax: g_imap_search_noattach bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_secure_port - IMAP Port (default 993)

Specifies the PORT to listen for dedicated SSL IMAP connections.

Syntax: g_imap_secure_port int

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_size_fetch - If true, will display message sizes on fetch command. (ie * 123 EXISTS)

Displays message size in IMAP responses

Syntax: g_imap_size_fetch bool

g_imap_spam_train - Train if moving message to 'spam' folder, or from 'spam' folder to inbox

This setting has no further documentation currently available

Syntax: g_imap_spam_train bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_testing - Test imap module instead of normal one (not functional)

Replace normal imap with a test one, this is not functional, do not use this setting.

Syntax: g_imap_testing bool

g_imap_timeout - Time, in minutes for imap timeout, RFC required default is 30

You may in some cases wish to reduce this below the RFC required default if your server is under very heavy load. Results may be unexpected when breaking RFC behavior!

Syntax: g_imap_timeout int

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_timezone - Timezone to display - for testing purposes only

as per title :-)

Syntax: g_imap_timezone string

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_imap_uidl_nofix - Disable UIDL auto repair of duplicate entries

If true disable auto repair of identical UIDL entries.

Syntax: g_imap_uidl_nofix bool

g_imap_user_flags - This setting may confuse some email clients (mac) use with cautioun

This may confused some email clients if multiple clients are used on a single account as the user flags can conflict

Syntax: g_imap_user_flags bool

g_include - Include another ini file global settings only

Unlike the include command this setting will allow editing of the ini file in web admin, but settings included via this setting will not appear in the admin interface

Syntax: g_include string

g_iplimit - Untrusted local ip addresses e.g. web servers, special sending limits applied.

These limit settings let you control untrusted sources which may get viruses or cgi scripts that open them up to abuse. By throttling the remote addreses limit this will prevent any significant abuse. Authenticated sessions are 'not' limited!.

Syntax: g_iplimit string

g_iplimit_islocal - Add domains to list of domains considered local for limit counting

See explanation of g_iplimit

Syntax: g_iplimit_islocal string

g_iplimit_local - Max sends from untrusted ip to local domains per 30 minutes.

See explanation of g_iplimit

Syntax: g_iplimit_local int

g_iplimit_remote - Max sends from untrusted ip to remote domains per 30 minutes.

See explanation of g_iplimit

Syntax: g_iplimit_remote int

g_iplimit_whitelist - List of 'from' addresses that should bypass limits

This lets you bypass the iplimit restrictions for a known trusted user/form that needs to send a lot of local/remote emails

Syntax: g_iplimit_whitelist string

g_ipv6_enable - Enable IPV6 networking (beta testing only)

Enable IPV6 networking - this feature only exists on some platforms. And is not yet fully implemented. We strongly advise you DO NOT use this on a live mail server but rather use it in your ipv6 test environment.

Syntax: g_ipv6_enable bool

See also: dmail_skip_imap, imap_public, old_imaphost, old_imaphost_always, old_imaphost_createuser_disable, old_imaphost_nodomain, old_imaphost_nodelete, old_imaphost_prefix, old_imaphost_file, old_imaphost_user, old_imaphost_pass, old_imaphost_lowercase, old_imaphost_skip, g_autologin_imap_disable, g_fix_imap_lf, g_imap_acl, g_imap_blacklist, g_imap_cram_enable, g_imap_capa, g_imap_capa_strip, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_imap_port, g_imap_delay, g_imap_secure_port, g_imap_search_noattach, g_imap_spam_train, g_imap_no_internal_date, g_imap_timezone, g_imap_timeout, g_imap_uidl_nofix, g_imap_size_fetch, g_imap_idle_nsf, g_imap_testing, g_imap_old, g_imap_old_ip, g_imap_pop_burst, g_imap_friends, g_imap_user_flags, g_imap_max_messages, g_safe_imap, g_old_imap_headbody, g_ssl_allow_imap, g_ssl_require_imap

g_keepalive - Attempts to use keepalive for the web sessions (experimental & faulty currently)

Don't use this yet, we are still working on it.

Syntax: g_keepalive bool

See also: webmail_url, webmail_urladd, webmail_workarea, webmail_host, web_url_path, g_key_manual, g_key_nowarning, g_webdav_enable, g_webdav_group, g_webdav_public, g_webdav_path, g_webmail_limit, g_webmail_port, g_webmail_secure_port, g_webmail_timeout, g_webmail_useip, g_webmail_popmode, g_webmail_url, g_webmail_urladd, g_webmail_workarea, g_webmail_select_domain, g_webmail_secret, g_web_hide_source_names, g_web_force_doctype_first_disable, g_web_url_path, g_web_title

g_key_manual - Try and activate automatically when the key expires

When you purchase updates you must activate to get the expire date reset in surgemail, if this setting is not turned on then surgemail will try and do this automatically for you.

Syntax: g_key_manual bool

See also: webmail_url, webmail_urladd, webmail_workarea, webmail_host, web_url_path, g_keepalive, g_key_nowarning, g_webdav_enable, g_webdav_group, g_webdav_public, g_webdav_path, g_webmail_limit, g_webmail_port, g_webmail_secure_port, g_webmail_timeout, g_webmail_useip, g_webmail_popmode, g_webmail_url, g_webmail_urladd, g_webmail_workarea, g_webmail_select_domain, g_webmail_secret, g_web_hide_source_names, g_web_force_doctype_first_disable, g_web_url_path, g_web_title

g_key_nowarning - Disable reminders to update your license

Disables the email reminding you to pay for updates for virus and spam filter and new versions etc...

Syntax: g_key_nowarning bool

See also: webmail_url, webmail_urladd, webmail_workarea, webmail_host, web_url_path, g_keepalive, g_key_manual, g_webdav_enable, g_webdav_group, g_webdav_public, g_webdav_path, g_webmail_limit, g_webmail_port, g_webmail_secure_port, g_webmail_timeout, g_webmail_useip, g_webmail_popmode, g_webmail_url, g_webmail_urladd, g_webmail_workarea, g_webmail_select_domain, g_webmail_secret, g_web_hide_source_names, g_web_force_doctype_first_disable, g_web_url_path, g_web_title

g_language_default - Default language for user web interface

If the user has not yet selected a language then this language is used as a default. If the language specified here does not exist in the language files, or nothing is specified here then English is used as the default language.

Syntax: g_language_default string

g_last_login - Create last_login.time files

If true then when users login via pop or imap or webmail the file last_login.time is created/touched, this can then be used by local scripts to determine which user directories are not in active use.

Syntax: g_last_login bool

g_last_login_days - If last login is more than this many days then reject email - do not use on mirrors

This can be used on a shared disk cluster to establish which users are inactive. On a normal mirror or stand alone system you should use DISABLE_SMTP_AFTER

Syntax: g_last_login_days int

g_late_forward - Apply all users forwarding rules after friends, spam, and filtering

By default users forwarding rules are applied before friends, spam and user filter rules. By default users can tick and option on their forwarding page to perform 'late' forwarding, that is forwarding that occurs after friends, spam and filtering. This option overrides the user option and causes all user forwarding rules to be applied after friends, spam and filtering.

Syntax: g_late_forward bool

g_ldap_forward - Remote ldap server to forward requests to (only for testing do not use)

Forwards all ldap requests to another host, primarily intended for testing, use at your own risk.

Syntax: g_ldap_forward string

See also: ldap_disable, ldap_anydomain, g_ldap_port, g_ldap_outlook_browse_max

g_ldap_outlook_browse_max - Basic outlook ldap address browsing, max items (KEEP THIS SMALL eg <50): default=0 (disabled)

numeric maximum items to return default=0 (ie disabled)

Syntax: g_ldap_outlook_browse_max int

See also: ldap_disable, ldap_anydomain, g_ldap_port, g_ldap_forward

g_ldap_port - LDAP Port (normally 389)

If specified this enables the mini ldap server inside surgemail which allows users with email clients that can do 'ldap' directory lookups to search for other users on the system. Obviously this should NEVER BE turned on for a public mail server, it is only appropriate with private mail servers where all users who can access the system are trusted.

There are additional 'domain' settings ldap_anydomain, which lets users search for users outside their own domain name. And ldap_disable which can disable ldap for specific domains.

Syntax: g_ldap_port int

See also: ldap_disable, ldap_anydomain, g_ldap_forward, g_ldap_outlook_browse_max

g_lf_fix_off - If input contains naked 'lf' characters then reject with error instead of stripping as usual

This setting has no further documentation currently available

Syntax: g_lf_fix_off bool

g_local_skipgateway - Skip gateway rule for local messages

If true skip gateway rule for local messages (bounces etc). 

Syntax: g_local_skipgateway bool

g_log_bounce_disable - Stop bounce reject entries filling up log (typically from spam bounces)

Disables useless logging in msg*.rec files, only recommended for busy servers

Syntax: g_log_bounce_disable bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_date - Log full date in log files

Makes log lines more complete

Syntax: g_log_date bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_date_msg - Log full date in msg log files (g_log_date required too)

Makes log lines more complete with the full date

Syntax: g_log_date_msg bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_disable - Disable most logging - not recommended

This setting has no further documentation currently available

Syntax: g_log_disable bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_dns - Log dns responses in gory detail

Useful when debugging unexpected DNS results, search for 'dns' in mail.log to find the results.

Syntax: g_log_dns bool

See also: g_dns_paranoid, g_dns_match_msg, g_dns_noptr, g_dns_noptr_skip, g_dns_noptr_msg, g_dns_nocache, g_dns_cache_size, g_dns_system, g_dns_host, g_dns_nlookup, g_dns_require, g_dns_translate, g_dns_old, g_dns_new, g_spf_dns_timeout

g_log_dropped_disable - Don't log if no 'data' command sent

Disables useless logging in msg*.rec files, only recommended for busy servers

Syntax: g_log_dropped_disable bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_log_flush - Flushing log - flush on every write

This makes the server flush log data after every write to the file. This affects performance but can sometimes be the only way to track down an unusual fault eg: if the server dies the log is completely up to date and shows the last thing the server did before dying. 

Syntax: g_log_flush bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_fwd - Log fwd/redirection rules associated in msg.rec

Log fwd/redirection rules associated with g_log_rcpt in msg.rec files. 

Syntax: g_log_fwd bool

g_log_level - Set logging level

Set the logging level. This is primarily intended for finding faults with the server. Info level logging is the default. Alternatives are 'error' and 'debug' 

Syntax: g_log_level string

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_norcpt - Don't log individual recipients in msg.rec files

Log individual recipients in msg.rec files

Syntax: g_log_norcpt bool

g_log_path - Path for log files

Sets the path for all SurgeMails generated logfiles. (except the delivery record logs)

Syntax: g_log_path string

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_pid - Log pid

Log PID along with thread-id in the UNIXlog files.

Syntax: g_log_pid bool

g_log_reject_disable - Disable the logging of rejected mail

SurgeMail will normally log failed deliveries due to MFilter / SmiteSpam / etc in the delivery logs. This setting will restrict this logging to accepted mail only.

Syntax: g_log_reject_disable bool

g_log_size - Size of the mail.log files before they are rotated

The mail.log files are a fixed size rotating log of what is happening inside SurgeMail. Dependant on the load of your server this may contain a few days worth of activity or a few minutes worth. This setting allows you to change the default 2MB before rotation size.

Syntax: g_log_size int

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_slow - Do slower logging system

Forces logging to disk even if it may slow things down. Not recommended.

Syntax: g_log_slow bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_start_norotate - Don't rotate log on startup

By default the mail.log is rotated to mail2.log... on startup.

Syntax: g_log_start_norotate bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_syslog - Send 'msg.rec' entries to syslog

This is useful to 'merge' log information on a single host, on unix you specify the destination in your syslog configuration rather than specifying a host. On windows you can specify the remote host as you may not have a local syslog daemon

Syntax: g_log_syslog bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_syslog_debug - Send 'mail.log' entries to syslog as 'mail.debug' data

This data is probably not worth sending to syslog, it's really debugging information of no long term value and too much to store.

Syntax: g_log_syslog_debug bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_syslog_host - Specify host to send syslog entries to (windows only)

On windows this lets you tell surgemail where the syslog deamon is, on unix you can do this in your syslog config file.

Syntax: g_log_syslog_host string

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_syslog_only - Disable writing to msg.rec

This prevents the local logs from being written

Syntax: g_log_syslog_only bool

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_read, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

Syntax: g_log_tcp_read string

See also: blogs_max_per_user, loginfails, url_blogs, g_acctlog_sum_inactive, g_acctlog_authonly, g_acctlog_noaliases, g_alias_login_disable, g_bad_login_mins, g_bad_login_allow, g_bad_login_ip_allow, g_bad_login_ip_ignore, g_bank_log, g_authent_logall, g_authent_last_login, g_autologin_pop, g_autologin_file, g_autologin_imap_disable, g_blogs_enable, g_blogs_maximum_image_width, g_blogs_maximum_image_size, g_blogs_maximum_items_in_top_page, g_blogs_max_per_user, g_blogs_default_template, g_blogs_use_sub_domains, g_blogs_sub_domain_prefix, g_blogs_not_unique, g_blogs_not_global, g_blogs_no_suffix, g_blogs_ping, g_blogs_domonly, g_blogs_image_optional, g_blogs_allow_links, g_blogs_cleanup_links, g_blogs_comment_rev, g_imap_log_protocol, g_imap_log_flush, g_imap_log_copy, g_imap_log_header, g_imap_log_body, g_last_login, g_last_login_days, g_log_flush, g_log_fwd, g_log_level, g_log_disable, g_log_path, g_log_pid, g_log_thid, g_log_reject_disable, g_log_bounce_disable, g_log_dropped_disable, g_log_tcp_write, g_log_norcpt, g_log_size, g_log_dns, g_log_slow, g_log_start_norotate, g_log_user, g_log_date, g_log_date_msg, g_log_syslog, g_log_syslog_debug, g_log_syslog_only, g_log_syslog_host, g_msg_log_extra, g_setpassword_firstlogin, g_perflog_disable, g_perflog_flush_interval, g_perflog_lowres, g_perflog_logall, g_perflog_surgeonly, g_smtp_log_protocol, g_smtp_log_size, g_spawn_log, g_spf_debug_log, g_spflog_enable, g_spflog_domains, g_ssl_require_login, g_surgeblog, g_user_blogs, g_user_friends_domain_log_disable, g_user_friends_log_disable, g_surgeweb_logall, g_surgeplus_log_level

g_log_tcp_read,g_log_tcp_write - Log actual data for a specific IP

These settings let you 'trace' the data going 'to' and or 'from' a specific IP address (or list, or wild card) Lets say you have a client on a specific address that has a problem where the fault could be server/client or network related. To track it down add this to surgemail.ini

g_log_tcp_read "2.3.4.5"
g_log_tcp_write "2.3.4.5"

	Received: from netwin.co.nz (unverified [10.0.0.5])
		by myservername (SurgeMail 1.5f) with ESMTP id 1140619
		for <marijn@netwin.co.nz>; Fri, 07 Nov 2003 10:25:59 +1300
   

 This sets Dr Watson to be the default debugger)
         c:/> drwtsn32 /i   
 This brings up the Dr Watson settings, un-tick "Visual Notification"
         c:/> drwtsn32