ipsec_mailkey

Langue: en

Version: 11/14/2008 (ubuntu - 25/10/10)

Section: 8 (Commandes administrateur)

NAME

ipsec_mailkey - mail DNS records for Opportunistic Encryption

SYNOPSIS

ipsec --me my@address.tld [--reverse 1.2.3.4 aaa] [--forward hostname.domain.tld]

DESCRIPTION

Mailkey

is a meta-program. It generates a script which will attempt to mail the TXT records required to enable Opportunistic Encryption (OE).

An e-mail address for the domain's DNS administrator is derived from SOA records. The mail body and destination address are freely editable in the script.

If no administrator can be located, the output file will not be executable.

The --me option sets the Reply-to: address of the mail to be sent.

The --forward hostname sets the domain name to be used for initiator-only OE.

The --reverse ip-address sets the ip address to be used for full Opportunistic Encryption.

EXAMPLES

ipsec mailkey --me paul@xelerance.com --forward bofh.xelerance.com

creates the i-OE record for use on bofh.xelerance.com.

ipsec mailkey --me paul@xelerance.com --reverse 193.110.157.17

creates full-OE record for use on bofh.xelerance.com's static IP address.

FILES

/etc/ipsec.secrets

SEE ALSO

ipsecshowhostkey(8),host(8)

HISTORY

Written for the Linux FreeS/WAN project <http://www.freeswan.org/> by Sam Sgro.