X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=html%2Fdoc-mail.wml;h=99fcb04ed2cebf9800eac49c0b1db3c6880f922d;hb=6e4d8c65d25e6ef5dc4a92ae8fc917f822d9ebfd;hp=e7119896ab233c9fc291f482ce8ff50d1fdf4eca;hpb=613c432ec18ad7556fe5f649347f4e7b0cb19fd2;p=mirror%2Fuserdir-ldap-cgi.git
diff --git a/html/doc-mail.wml b/html/doc-mail.wml
index e711989..99fcb04 100644
--- a/html/doc-mail.wml
+++ b/html/doc-mail.wml
@@ -108,16 +108,27 @@ which will set the authentication key to the identity you are using.
Multiple keys per user are supported, but they must all be sent at once.
+Keys can be exported to a subset of machines by prepending
+allowed_hosts=$fqdn,$fqdn2 to the specific key. The allowed machines
+must only be separated by a comma.
+
+Example:
+
+# cat .ssh/debian-machines.pub
+allowed_hosts=ravel.debian.org,gluck.debian.org ssh-rsa AAAAB3Nz..mOX/JQ== user@machine
+ssh-rsa AAAAB3Nz..uD0khQ== user@machine
+
+
RBL, RHSBL, and whitelists can only be updated via the mail gateway. Like
DNS and ssh keys, any list specified must be specified in its enterity. The format is:
listtype dns.domain.of.rbl/IP to whitelist where listtype is one of mailRBL,
mailRHSBL, and mailWhitelist
-Debian.net DNS Zone Entry. The only way to get a debian.net address is
-to use the mail gateway. It
-will verify the request and prevent name collisions automatically. Requests
-can take three forms: 'foo in a 1.2.3.4', 'foo in cname
-foo.bar.', or 'foo in mx 10 foo.bar.' (note the trailing dot).
+The only way to get a dnsZoneEntry record for a debian.net address is to
+use the mail gateway. It will verify the request and prevent name collisions
+automatically. Requests can take three forms: 'foo in a 1.2.3.4',
+'foo in cname foo.bar.', or 'foo in mx 10 foo.bar.' (note
+the trailing dot).
Note that you
cannot combine CNAME with any other record types. The precise form
is critical and must not be deviated from.