Global Settings

SurgeMail Configuration Setings Overview
Domain Specific Settings

access_group_default - Default group to place users in

admin_access_default - Default admin features granted to domain admins in this domain

alias_file - Alias translation file for this domain, unix format

alias_max - Maximum number of aliases for this domain

assume_created_epoch - If user has no 'created' field assume they were created an arbitrarily large time in the past

blogs_max_per_user - Number of blogs each account can create

centipaid - Enable CentiPaid feature for matching accounts

class - Define class of user for following commands to apply to

create_block - Block new users from this ip

create_cleanup - Cleanup existing data before adding a user

create_delete_days - Number of days a disabled new account remains before deletion

create_disable_days - Number of days new accounts remain active for

create_image - Use verification image on signups

create_linkto - Link to redirect to after successful live account creation

create_max - Maximum signups from ip in time period

create_repass - Users must enter their password twice on creation

create_reqd - Required fields for new users, e.g. (phone,age)

create_subdomain - Allow users to have their own subdomain

create_tpl_dir - Relative directory (from /web) where 'netauth' pages are stored

create_user - Method for adding new users

delete_user_after - Number of days an account can remain unread before it is deleted

disable_smtp_after - Number of days an account can remain unread before delivery is disabled

disable_surgeplus - Disable SurgePlus Calendar/File Sharing

dmail_bin_path - Path for dmail bin files to automatically convert delivered mail

dmail_deliver - Deliver messages into dmail drop directories (not supported)

dmail_drop_path - Path for dmail / sendmail style drop files to automatically convert delivered mail

dmail_drop_prefix - Whether prefix is used on drop file names

dmail_hash - Hashing scheme used by dmail_drop_path and dmail_bin_path

dmail_skip_imap - Skip conversion of old imap *.mbx folders

enotify_from - From address to use in email notification messages

expire_age - Expire inbox mail older than (days)

expire_rule - Expire rules for specific folders, age is in days

expire_size - and larger than this

fallback - Default address for this domain, NOT RECOMMENDED

fallback_always - Also relay to old system even if user does exist - not recommended

fallback_check - Check if user exists on fallback_relay host before accepting it

fallback_relay - Host to send messages to if user doesn't exist here

footer_file - Text footer file for all messages 'from' this domain

footer_html - HTML footer file for all messages 'from' this domain

forward_illegal - Ban forwards to these addresses

friends_at_rcpt - Whether to check users friends list at rcpt stage

from_exact - Check from matches authenticated user

gateway_to - Send all email to another server

header_add - Add header to posts 'from' this domain

host_alias - Alternate name(s) for this domain

imap_public - Share IMAP folders between users (FAULTY, DO NOT USE!)

language_default - Default language for user web interface

late_forward - Apply domain users forwarding rules after friends, spam, and filtering

ldap_anydomain - Lets users search other than their own domain in ldap

ldap_disable - Stops ldap logins by users of this domain

list_disable - Disables creation of mailing lists.

list_max - Maximum number of mailing lists for this domain.

list_max_users - Maximum number of users allowed in all lists in this domain.

loginfails - Disconnect user after this many password guesses

lookup_relay_on_from - Looks up local from addresses to check for relay="true"

mailbox_path - Path to mailbox (inbox) files

manager_email - Domain managers email address (for email based account creation confirmation)

manager_username - Domain managers username (for web based domain administration)

msg_max_in - Max size for messages to users in this domain, largest applied if multiple recipients

msg_max_out - Max size for messages sent by authenticated users of this domain

old_imaphost - Old IMAP server:port - transition IMAP accounts and folders if user doesn't exist

old_imaphost_always - Retrieve mail from old imap host on each login (slow - particularly for webmail)

old_imaphost_createuser_disable - Disable old_imaphost user creation on first login

old_imaphost_file - Migration based on file

old_imaphost_lowercase - Migration - All migrated folders are lowercase.

old_imaphost_nodelete - Leave mail on the old server (disables old_imaphost_always)

old_imaphost_nodomain - Strip domain from username when logging into old imap host

old_imaphost_pass - Migration based on file - password field

old_imaphost_prefix - Prefix for old imap server, e.g. mail//

old_imaphost_skip - Migration - Comma seperate wild card list of migrate folders to skip past.

old_imaphost_user - Migration based on file - user field

old_pophost - Old pop server:port - transition accounts and pending messages if user doesn't exist

old_pophost_always - Retrieve mail from old pop host on each login

old_pophost_bind - Bind outgoing connection during pop migration

old_pophost_createuser_disable - Disable old_pophost user creation on first login

old_pophost_nodelete - Leave mail on the old server (disables old_pophost_always)

old_pophost_nodomain - Strip domain from username when logging into old pop host

old_pophost_sep - Seperater, default is '@', e.g. some systems use %

old_smtphost - SMTP host to check for existing users (when creating new accounts)

old_smtphost_skip - Who to disable SMTP host checks for

old_xfile - Migration - Copy xfile data across

pop_welcome - POP connection message

prefix - Database username prefix (deprecated, compatibility only)

proxy_pop_nodomain - Strip domain when talking to proxy pop host

quota_default - Default quota

quota_domain - Total quota for the domain, e.g. 300mb, 2gig

rcpt_msg - Response given for invalid recipient errors, message is prefixed by email address.

redirect - Redirect messages from 'was' to the new 'to' address

redirect_cc - Send carbon copy to another address

redirect_hash - Share incoming message evenly between several accounts

redirect_max - Limits the number of redirect rules

send_helo - Mail host A Record name used when sending helo to other servers

smtp_welcome - SMTP connection message

spam_block - Default for this domain to block spf etc failures

spam_strip - Strip spamdetect headers for this domain

ssl_allow - IP Wild card list to allow SSL encryption from

ssl_pop_domain - Domain to use for ssl certificates for POP and IMAP

surgeplus_pop_server_name - Default POP server for SurgePlus clients

surgeplus_smtp_server_name - Default SMTP server for SurgePlus clients

surgewall - Surgewall - Proxy this domain to specified mail server

surgewall_auth - SurgeWall SMTP authentication

surgewall_capa_local - Just return local imap capa response rather than remote

surgewall_options - Various SurgeWall options

surgeweb_backend - Backend machine to connect to

suspend - Disable logins for entire domain

url_alias - Allows translation from one url to another

url_blogs - BLOGS host A Record name (if different from MX Record name - eg. blogs.mydomain.com)

url_host - Mail host A Record name (if different from MX Record name - eg. mail.mydomain.com)

user_access_default - Default user features granted to users in this domain

user_alias - Number of aliases accounts can create

user_centipaid - User Centipaid configuration options

user_list_quota - Number of mailing lists users can create

user_max - Maximum number of users in this domain

user_send_max - Maximum number of emails per day (requires SMTP AUTH)

user_sms - Allow users to setup sms notifications

user_sms_quota - Number of sms messages per account

user_status_send - How often to send user status messages (0 = never)

web_access_ip - Restrict access to web ports based on ip

web_path - Path to web admin pages

web_url_path - Url to path translation with access specifier

webmail_host - The ip address or name of the machine to instruct webmail to connect to.

webmail_url - Url to the WebMail cgi

webmail_urladd - Url data to append to WebMail auto-login link

webmail_workarea - Path to WebMail workarea

xfile_url - Url to xfile files (see surgeplus utility)

Global settings

g_access_group - Grouped per user access limitations

g_access_group_default - Default group to place users in

g_acctlog_authonly - Log sending usage based on authenticated accounts only and ignore "MAIL FROM" address - which may be fake!!

g_acctlog_noaliases - Don't log redirection & aliases as sending mail as a result of redirection / forwarding (means you will not log account forwarding usage)

g_acctlog_sum_inactive - Summarise local accounts that have not logged in yet as not_loggedin_yet@domain.com

g_admin_access - Domain admin features granted to access groups

g_admin_access_default - Default admin features granted to domain admins

g_admin_guesses - Max guesses per IP for web admin access, e.g. 15

g_admin_ip - Mask of valid IP addresses for web admin users (default *)

g_admin_localhost - Allow localhost web admin without user/pass

g_admin_utoken_expire - Length of time a web admin session is valid for

g_admin_utoken_idle - Length of time a web admin session may remain idle for

g_allow_bodyless - If true bodyless mail messages will be accepted (usually spam)

g_allow_passzip_from - A list of addresses to allow unmonitorable archive messages to be sent from

g_allow_passzip_to - A list of addresses to allow unmonitorable archive messages to be sent to

g_allow_user_authent_field_get - A space separated list of authent process fields that users are allowed to view for themself using the POP xauthent_field_get command

g_allow_user_authent_field_set - A space separated list of authent process fields that users are allowed to set for themself using the POP xauthent_field_set command

g_archive - Archive messages that match these rules

g_archive_bucketsize - Size for archive bucket files. Default is 1mb

g_archive_early - If true apply archiving before filtering is applied (superceeded by early flag on g_archive)

g_archive_files - Archive attachments to a directory

g_archive_on_delete - Don't delete user files, archive them to g_archive_on_delete_dir

g_archive_on_delete_dir - Directory to archive user files to on delete

g_aspam_headers - Add aspam information messages to messages.

g_aspam_need_ip - Require good matches to match external ip address

g_assume_created_epoch - If user has no 'created' field assume they were created an arbitrarily large time in the past

g_atrn_client - Define a rule for fetching email

g_atrn_port - Port to listen for 'atrn' (On Demand Relay) requests

g_atrn_server - On Demand Mail Relay settings to define user/pass for clients to fetch mail

g_auth_hide - Disable SMTP Authentication for this IP List/Wild card address

g_auth_norelay - Ignore SMTP auth for relaying purposes

g_auth_skipgateway - Skip gateway rules if we get a proxy SMTP auth command

g_authent_allow_badascii - Allow ascii chars outside the range 32 < 127

g_authent_always - Always lookup user, so virtual domains can exist just in authent module, looses existing users files

g_authent_cachebad - Set the life in seconds that the cached failed lookups can be used, default 60 seconds

g_authent_cachelife - Set the life in seconds that cached authent lookups can be used, default 1 hour

g_authent_cachesize - Set the size of the authent cache, default is 500 entries

g_authent_domain - If true add @virtual.domain.name to external user lookups (typically always set to true)

g_authent_fwdfile - Enables reading of old dmail .fwd files

g_authent_info - User info names, fields and access rules

g_authent_info_grp - Fields to show to users in this group

g_authent_ip - Lookup ip numbers in authent database with @ip added, to find send_limit=n values, must define tarpit_max_remote and g_tarpit_drop

g_authent_last_login - Store users last login time in the database

g_authent_logall - Turns on logging of authent requests

g_authent_number - Number of authent processes to run

g_authent_path_broken - Allow authent module to return drop path, strongly discouraged, and BROKEN!!

g_authent_prefix_sep - Prefix separator, defaults to an underscore, a single character

g_authent_process - Authent process command line

g_authent_restart - Cycle auth modules every 1000 lookups

g_authent_single - Allow local users with a single quote char in their name

g_authent_strip_domain - Domain to strip when doing authent lookups

g_authent_timeout - Timeout for authent response, default 60 seconds

g_autologin_file - File to use to share auto login information on NFS based cluster

g_autologin_pop - Performs auto-logins using pop3, used by webmail

g_backtrace_disable - If true backtrace code is disabled on unix

g_bad_login_allow - Number of consecutive bad logins for a user before blocking that user

g_bad_login_ip_allow - Number of bad logins from an ip before blocking that ip

g_bad_login_ip_ignore - IP address(es) to ignore bad logins from

g_bad_login_mins - Minutes to block login for, if consecutive bad ones received

g_badfrom_badmx - If mx host is one of these addresses then drop the message, it's definitely spam (e.g. 127.*)

g_badfrom_check - Check env from by connecting to it, always tick 'stamp' rule too or messages will bounce! NOT RECOMMENDED

g_badfrom_from - From to use when doing the check, not normally needed, if set must be set to valid account

g_badfrom_noip - Check envelope from domain exists and is a valid ip number, if not reject message

g_badfrom_stamp - Instead of bouncing message, just stamp a header to show if from address is no good

g_badfrom_whitelist - List of domains that we don't try badfrom checking on (see g_smite_skip)

g_ban_blackhole - Leave connected but reject all recipients without looking them up

g_ban_from - Disconnect if this wild card matches the from envelope

g_ban_helo - Disconnect if user says 'helo xxx' (or wildcard)

g_ban_rcpt - Disconnect any user delivering to this address/wildcard

g_bank_debug - Log request to bank server

g_bank_group - Create price groups with descriptions

g_bank_log - Log lines matching this in response.

g_bank_ok - Find this in response, if found then charge was successful

g_bank_pass - Password for authenticated web request to banks system

g_bank_reason - This line is returned to user if it is found

g_bank_url - URL to charge a credit card (experimental)

g_bank_user - Username for authenticated web request to banks system

g_bind_byfromip - Bind outgoing SMTP connections to the specified IP based on the sender IP

g_bind_from - Bind outgoing SMTP connections based on 'from' envelope

g_bind_incoming - Bind outgoing SMTP connections based on incoming ip address

g_bind_out - Bind outgoing SMTP connections to this IP

g_black_above - Level for spam detection for blacklisting ip number e.g. 7

g_black_count - Number of spam in a row before we blacklist ip for 30 minutes, e.g. 30

g_black_to - Blacklist ip address if they deliver to these user@domain addresses

g_block_files - Wild card list of files to bounce, e.g. *.exe,*.cmd

g_block_longok - If true allow long file names (more than 180 char)

g_block_skip - From or To address to bypass g_block_files

g_block_wild - Block wild cards in usernames

g_blogs_allow_links - Allow users to post comments that contain urls

g_blogs_cleanup_links - Delete existing posts that contain urls

g_blogs_default_template - Default template set that is used by newly created blogs

g_blogs_domonly - Only list blogs in a users domain

g_blogs_enable - Surgemail blogs

g_blogs_image_optional - Allow users to specify if image verification is required for comments

g_blogs_max_per_user - Maximum number of blogs per user

g_blogs_maximum_image_size - Default maximum image size

g_blogs_maximum_image_width - Default maximum image width

g_blogs_maximum_items_in_top_page - Maximum number of items on the top blog page

g_blogs_no_suffix - Shortens URL, url_blogs must be defined for each domain

g_blogs_not_unique - Allow the same blog name in multiple domains

g_blogs_ping - Sites to ping on each post

g_blogs_sub_domain_prefix - Prefix to use instead of blogs. for blog subdomains. use ! to have no prefix.

g_blogs_use_sub_domains - Make blogs accessible at http://blog_name.domain/

g_body_filter - Enable user email body filtering

g_bomb_max - Max msgs to a single email address/hour

g_bomb_max_from - Max msgs from a single email address/hour

g_bounce_bind - Use a specific ip address for outgoing bounces

g_bounce_disable - Disable all bounces (useful when under spam attack)

g_bounce_limit - Max size in bytes of message to send back as bounce, message is truncated if necessary

g_bounce_nodrop - Enables locally generated bounces for non local users

g_bounce_redirect - Send all bounces to a local address

g_bounce_reject - Reject bounces by ip address from known dumb mail servers

g_bounce_some_stop - Disables locally generated bounces for partial message failure

g_bounce_suggest - Send bounces to postmaster if spf cannot be verified

g_bounce_to - Domains to treat as local and send bounces to

g_centipaid - CentiPaid address and port

g_cid_skip_to - Skip CID score, good for lawyers etc

g_comment - Management notes and comments about the server

g_con_perip - Connection limit per ip - sum of SMTP/POP/IMAP (if over refuse connection)

g_con_perip_except - Exception IP addresses to g_con_perip

g_con_persubnet - Global concurrent connection limit per ip subnet x.x.x.*

g_convert_percent - Convert % to @ sign in rcpt address

g_crash_normal - Crash without catching signals 10,11 so good core dump on freebsd

g_create_allow - List of characters allowed in usernames (and passwords, unless g_create_allow_pass is used)

g_create_allow_pass - List of characters allowed in passwords

g_create_apply - List of user groups to apply create_* settings for.

g_create_badnames - List of illegal usernames

g_create_cleanup - Cleanup existing data before adding a user

g_create_dictionary - File containing dictionary words to compare passwords to

g_create_pass_length - Limit the length of user passwords

g_create_record_ip - Causes surgemail to store ipnum in the authent database

g_create_strict - Whether to apply strict rules to usernames/passwords

g_create_user_length - Limit the length of usernames

g_dbabble_links - Add web links to DBabble from other web interfaces (and vice versa)

g_dbabble_smtp_port - DBabble SMTP port (do not manually change this setting - it should be set from the DBabble section of the web admin interface only)

g_dbabble_smtp_prefix - DBabble SMTP prefix (do not manually change this setting - it should be set from the DBabble section of the web admin interface only)

g_debug_block - For catching bugs in block file processsing

g_debug_crt - Some CRT debugging on windows, do not use

g_debug_ini - Debugging, don't use this

g_debug_vanished - Name of file to check for, if file vanishes, crash

g_delete_exclude - Field and value that excludes an account from g_delete_user_after

g_delete_user_after - Number of days an account can remain unread before it is deleted (SEE WARNING).

g_delete_user_mode - Instead of deleting an unread account you can perform another action.

g_delete_user_suspend - If suspending an unread account set this field/value.

g_deny - Block users from some ip addresses

g_deny_msg - Block users from some domains

g_deny_smtp - Block users from some ip ranges connecting to SMTP only

g_disable_exclude - Field and value that excludes an account from g_disable_smtp_after

g_disable_skip - Ip address of senders to accept email from even if user account is disabled due to g_disable_smtp_after

g_disable_smtp_after - Number of days an account can remain unread before delivery is disabled

g_disable_surgeplus - Disable SurgePlus Calendar/File Sharing

g_disable_surgeplus_updates - Disable automated downloading of new versions of SurgePlus client from netwinsite.com

g_dlist_nostart - If set then don't start dlist (dmail compatibility)

g_dlist_path - DList Path normally defaults to $g_home/dlist

g_dmail_filter - DMail compatible filter.txt file

g_dns_cache_size - Set size of forward dns cache, default 7000

g_dns_host - Hosts to send DNS lookups to

g_dns_match_msg - Message for stamp or bounce if forward and reverse lookup don't match

g_dns_nlookup - Concurrent DNS lookups to send to DNS server, default=20

g_dns_nocache - Disables DNS cache for spf lookups (20 minute life)

g_dns_noptr - Set to reject or retry, for ip addresses with no reverse dns entry (rdns)

g_dns_noptr_msg - Message for stamp or bounce if DNS lookup fails on ip address

g_dns_noptr_skip - Skip RDNS for these ip addresses

g_dns_paranoid - Compare forward and reverse dns lookup and check they match (set to STAMP or REJECT) not recomended

g_dns_require - Require MAIL FROM header matches senders ip reverse dns

g_dns_system - Use system code to do reverse lookups

g_dns_translate - If mx response is x.x.x.x translate to y.y.y.y:port

g_domadmin_utoken_expire - Length of time a domain admin login token is valid for

g_domadmin_utoken_idle - Length of time a domain admin login token may remain idle for

g_domain_default - Default domain if user does not enter a domain on pop/imap login

g_domain_list_max - Maximum number of domains to list at once

g_domain_separator - Separator character for virtual domains

g_domainkeys_check - Check incoming DomainKeys signatures (beta may be unstable)

g_domainkeys_headers - List which headers to sign

g_domainkeys_only - Domains to sign for outgoing email

g_domainkeys_selector - Policy name for your server (used creating dns entry for domainkeys)

g_domainkeys_sign - Sign outgoing messages (create a key first using web admin)

g_domuser_file - Domain user file. Create thousands of virtual domains easily

g_dotlock_minutes - Minutes to wait for NFS lock file, default 20 minutes

g_dotstuff_fix - Debugging setting, do not change or bad things will happen

g_doweb - Do web part only

g_download - Fetch an http file and do an ini reload

g_drop_use_len - Use the content-len header for drop file processing (Solaris)

g_dsn_enable - Enable DSN (Delivery Status Notification) esmtp extension.

g_dsn_nofinal - Try not to show real final recepients but just original recipients

g_ehlo_fault - Internal - for generating/testing faulty ehlo responses

g_ehlo_simple - Ip addresses to give simple ehlo respone to

g_encrypt_key - Encryption key for ccnumber auth field

g_enotify_from - From address to use in email notification messages

g_eof_fix_off - Turns off auto stripping of control+Z

g_expire_silent - Don't send users emails telling them what was expired.

g_expire_trash - Expire any messages found in trash folders

g_expire_warning - Give warning 'n' days before deleting each file (not implemented)

g_external_ip_disable - Do not add X-External-IP header

g_fallback - Default address for all local domains

g_fallback_relay_if_exists - Use FALLBACK_RELAY if not logged in but user exists (OLD_POPHOST_CREATEUSER_DISABLE)

g_filter_max - Max size for items to be sent to filter_pipe, or g_user_pipe, default no limit

g_filter_n - Concurrent filters to run at one time, default is 20

g_filter_pipe - Filter program that accepts msg on stdin and sends on stdout

g_filter_pipe_skip - Skip filter if ip matches this

g_filter_timeout - Filter timeout in seconds, default is 360

g_fix_crcrlf - Fix email messages containing crcrlf for line termination

g_fix_imap_lf - During IMAP import fix email messages containing lf

g_footer_file - Footer file which is appended to all mail messages

g_footer_html - HTML Footer file which is appended to all mail messages

g_footer_send - Footer file added to outgoing messages only

g_footer_sendonly - If true only add footers when sending to non local users

g_footer_skip - Skip footers for these users

g_forward_attach - When late forwarding send as attachment to these domains

g_forward_illegal - Ban forwards to these addresses

g_forward_oops - Internal testing setting, not for general use sorry

g_friends_always - Always use friends list.

g_friends_at_rcpt - Whether to check users friends list at rcpt stage

g_friends_byweb - Perform confirmation of pending via the web.

g_friends_check_spf - Disable friends bounces if SPF headers missing/failed.

g_friends_confirm_debug - Log sucessful friends confirmation responses

g_friends_confirm_subject - String to use as the subject of a friends confirmation email

g_friends_ignore - List of addresses considered friends for all users on the system

g_friends_ignore_trusted - If from trusted ip still apply friends

g_friends_latest_headers - Causes friends to re-read message headers, allowing rules based on headers added during delivery

g_friends_name - What to call the friends system on pages and in email

g_friends_only - Enable friendonly features - must be enabled by users too

g_friends_pending_keep - Number of days to store users pending messages before deleting them

g_friends_pending_vanish - Enable auto-vanish of pending messages on confirmation bounce

g_friends_rotate - Rotate user level log file, default 30k

g_friends_short - In friends web release addresses use a shortened url

g_friends_silent - Disable friends responses to users

g_friends_skip_ip - List of ip addresses considered friends for all users on the system

g_friends_spf_fail_bounce - Bounce SPF failures, do not send friends confirmations

g_friends_url - Specify full url for friends release http://domain.name:port

g_from_allow - Other email addresses we allow, e.g. *@x.y.com,*@b.com,fred@bb.com

g_from_allow_ip - IP addresses to bypass local from check

g_from_bl - Domain Based Blacklist Zones, lookups FROM domain in dns

g_from_bounce - Reject if local from address is probably faked

g_from_check - Check from domains match valid local domains if user is authenticated, or g_from_allow

g_from_exact - Check from matches authenticated user

g_from_header - From header used in delivery bounces

g_from_noforge - If envelope is local domain then from must be too

g_from_noforgeme - If to==from then from and env from must match

g_from_relay - If not authenticated and g_relay_allow_ip matched then block if not local domain or whitelisted

g_from_relay_white - White list of domains for g_from_relay setting

g_from_rewrite - Rewrite from envelope for outgoing email, e.g. *@this.domain -> %1@another.domain

g_from_stamp - Stamp if local from address is probably faked

g_from_timeout - Timeout when checking bad from addresses, default 60 seconds

g_from_valid - Require an @ and dotted domain in all return addresses

g_gateway - Gateway messages for that domain to the specified address

g_gateway_allow - Known hosts that act as incoming SMTP or surgewall servers for us

g_gateway_always - Always send to gateway even if local domain exists

g_gateway_auth - Send SMTP auth requests to another host

g_gateway_data - Gateway at the data stage (beta)

g_gateway_from - Pass 'from' header thru during gatewawy check

g_gateway_helo - Header that must exist in incoming bounces (g_send_helo) or bounces are dropped

g_gateway_ifnot - Send local deliveries to scanner (using gateway rule) before delivering locally, deliver locally if from ip matches

g_gateway_ignorewild_ip - Ignore * gateway rules if from ip matches (allows outbound email scanning using gateway * to external scanner)

g_gateway_mx - If specified IP address is found in mx record for destination then allow relay (not recommended)

g_gateway_orcpt - Writes an original receipt header when forwarding a message, this may disclose multiple recipients, cc/bcc etc use only for tracking faults

g_group_field - Auth field to add to group membership

g_hack_detect_disable - Stop admin emails when users login with a weak password

g_header_out - Header to add to outgoing posts

g_header_strip - Strip listed headers from incoming messages

g_helo_optional - Helo is optional for SMTP protocol (not recommended)

g_home - Home path of server configs log etc

g_http_proxy - Proxy web server for fetching files from netwinsite.com if direct access fails

g_imap_acl - Enable ACL (shared folders) in imap (beta)

g_imap_capa - Where to get the CAPABILITY value from

g_imap_capa_strip - Capability values to hide

g_imap_cram_enable - Enable CRAM-MD5 authentication (requires nwauth 4.0h or greater)

g_imap_friends - Test mapping friends_pending folder (not functional)

g_imap_idle_nsf - The number of seconds before a complete directory rescan. To be use on NSF network drives

g_imap_log_flush - Flush imap log on every write (for debugging)

g_imap_log_protocol - If true log IMAP protocol to log file

g_imap_no_internal_date - Disables internal date which helps stupid outlook client show correct dates

g_imap_old - Revert to old imap module

g_imap_old_ip - Revert to old imap module for some ip's

g_imap_pop_burst - Always burst using imap code

g_imap_port - IMAP port to listen on, default is 143

g_imap_secure_port - IMAP SSL secure port to listen on, default is 993

g_imap_size_fetch - If true, will display message sizes on fetch command. (ie * 123 EXISTS)

g_imap_testing - Test imap module instead of normal one (not functional)

g_imap_timeout - Time, in minutes for imap timeout, RFC required default is 30

g_imap_timezone - Timezone to display - for testing purposes only

g_imap_uidl_nofix - If true, disable auto repair of identical uidl entries

g_imap_user_flags - This breaks the mac email client, do NOT use! (disabled)

g_include - Include another ini file global settings only

g_iplimit - Untrusted local ip addresses e.g. web servers, special sending limits applied.

g_iplimit_islocal - Add domains to list of domains considered local for limit counting

g_iplimit_local - Max sends from untrusted ip to local domains per 30 minutes.

g_iplimit_remote - Max sends from untrusted ip to remote domains per 30 minutes.

g_iplimit_whitelist - List of 'from' addresses that should bypass limits

g_keepalive - Attempts to use keepalive for the web sessions (experimental & faulty currently)

g_key_manual - Try and activate automatically when the key expires

g_key_nowarning - Disable reminders to update your license

g_language_default - Default language for user web interface

g_last_login - If true create last_login file each time user logs in via imap/pop

g_last_login_days - If last login is more than this many days then reject email

g_late_forward - Apply all users forwarding rules after friends, spam, and filtering

g_ldap_forward - Remote ldap server to forward requests to (only for testing do not use)

g_ldap_port - LDAP port, set to 389 to enable simple address book lookups only. (NOT YET FULLY FUNCTIONAL)

g_lf_fix_off - If input contains naked 'lf' characters then reject with error instead of stripping as usual

g_local_skipgateway - If true skip gateway rule for local messages (bounces etc)

g_log_bounce_disable - Stop bounce reject entries filling up log (typically from spam bounces)

g_log_date - Log full date in log files

g_log_dns - Log dns responses in gory detail

g_log_dropped_disable - Don't log if no 'data' command sent

g_log_flush - Flush log file after every write

g_log_fwd - This setting is obsolete and has no effect

g_log_level - Level of logging, info, debug, error

g_log_norcpt - Disable Log individual recipients in msg.rec files

g_log_path - Directory for log files, defaults to G_HOME

g_log_pid - Log PID in log lines

g_log_reject_disable - If true then rejects are not recorded in .rec files

g_log_size - Size of each mail*.log file (e.g. 5mb)

g_log_slow - Do slower logging system

g_log_start_norotate - Don't rotate log on startup

g_log_syslog - Send 'msg.rec' entries to syslog

g_log_syslog_host - Specify host to send syslog entries to (windows only)

g_log_syslog_only - Disable writing to msg.rec

g_log_tcp_read - Log actual tcp read data - for matching ip addresses - avoid

g_log_tcp_write - Log actual tcp write data - for matching ip addresses - avoid

g_log_thid - Log thread id in .rec files

g_log_user - Log pop/imap/smtp protocol for specified user

g_lookup_names - Lookup ip names of connecting users (can be slow)

g_lookup_reject_fails - If lookup cannot get a name, reject user (not generally recommended)

g_lowdisk_warning - Disksize below which to send a warning to the system manager

g_mailbox_path - Default directory to store mail

g_maildir_max - Max messages in a folder, do not adjust

g_maildir_netwin - Use NETWIN proprietry storage format, See warnings before using

g_maildir_report - Email manager on ndb errors

g_maildir_standard - Use more standard maildir layout (NOT SUPPORTED)

g_mailstatus_message - Error message to give when mailstatus is set to specified state

g_manager - Email address of manager

g_manager_port - HTTP Manager port to listen on, default is 7026

g_manager_secure_port - HTTPS secure Manager port, default is https 7025

g_manager_smtp - SMTP server for error reporting

g_manager_username - Global domain managers username (for web based domain administration)

g_max_bad_ip - Max bad recipients per ip address before blocking that ip

g_max_bad_ip_time - Seconds to block guessing hackers

g_max_bad_nolookup - Max bad recipients in a row, if exceeded skip user lookup

g_max_bad_to - Max bad recipients in a row

g_mdir_hash - Hashing mode for surgemail (not supported, use at your own risk)

g_mdir_prefix - Prefix for maildir folders DO NOT USE THIS SETTING, NOT SUPPORTED!!!

g_mfilter_addonly - If true, then only allow 'adding' headers, not changing them

g_mfilter_file - Mfilter rule file. For spam rule processing (mfilter.rul)

g_mfilter_localonly - If true then only run mfilter on local deliveries

g_mfilter_maxlen - Size to truncate messages to before processing with filter

g_mfilter_noisey - Do log anything in mfilter

g_mfilter_skip_from - From addresses (envelope) to skip mfilter processing for

g_mfilter_skip_ip - IP address(es) to skip mfilter processing for

g_mfilter_skip_to - To addresses to skip mfilter processing for

g_mfilter_trace - Log trace lines in mfilter

g_mirror_config - Mirror surgemail.ini to/from mirror_host BETA TEST

g_mirror_config_except - Settings to ignore when accepting the incoming config

g_mirror_host - Mirror other host name

g_mirror_live - Mirror: Send incoming messages immediately

g_mirror_live_max - Limit size of mirror_live default 60k

g_mirror_mode - Mirrorring mode (one system must be MASTER and the other SLAVE)

g_mirror_nossl - Disable SSL for mirror protocol connection - recommended

g_mirror_nwauth - Mirror send nwauth database to other server, ONLY set on master

g_mirror_nwauth_always - Mirror nwauth database files

g_mirror_prune_age - Mirror minimum age for items to be pruned during sync_prune, default 14 days

g_mirror_secret - Mirror shared secret

g_mirror_threads - Max threads we can use during resync_fast, default 6

g_mirror_trash - Normally on a resync the trash folder is ignored.

g_monitor_disable - Disable monitor process completely (requires restart)

g_monitor_port - HTTP port for Surgemail Monitor to listen on, default is 7027

g_msg_hops_max - Maximum received lines or message is bounced, default 30

g_msg_log_extra - Extra user activity logging

g_msg_max - Max size of a single message (if over refuse with 552 error)

g_msg_max_drop - Drop link if size exceeded instead of waiting for the message to all arrive

g_msg_track - Message tracking - for debugging

g_mutex_timeout - Default mutex timeout period in seconds default is 600

g_mutex_timing - Name of mutex to collect extra timing information for

g_mx_tryall - Try all mx hosts even if lower than own mx priority

g_naked_msg - Error message if body contains naked lf characters

g_newui_advanced - Always run new admin ui in advanced mode

g_newui_disable - Disable swanky new admin ui

g_notag_notascii - Don't add x-notascii: charset to any non ascii message

g_notag_url_forgery - Don't add x-UrlForgery when a ref urls seem to not match

g_nwv_test - Test NetWin setting, best not played with)

g_old_imap_headbody - Get head and body seperately

g_old_pophost_debug - Log extra info when doing old pophost logins

g_old_user_check - Disable the account status enabled check on rcpt lines

g_orbs_cache_life - Time to keep RBL cached entries in seconds, default is 7200 seconds

g_orbs_check_all - Keep doing lookups even if found in a RBL, this is slower of course!

g_orbs_exception - Realtime Blackhole List, exception list of IP addresses

g_orbs_force - Force RBL check even if g_allow_ip matches this ip number

g_orbs_late - Do late disconnect so user has time to send SMTP authentication (Also applies G_SPF_SKIP_TO)

g_orbs_list - Realtime Blackhole Lists (RBL's), action=deny,accept,stamp

g_orbs_rec - Log to record file if RBL deny action occurs (can fill logs up)

g_orbs_report - List of IP's to check in RBL(s)

g_orbs_service - Service Name - Obsolete - use g_orbs_list to define services

g_orbs_system - If true use system dns lookups instead of surgemails for orbs (not recommended)

g_orbs_testing - If true, RBL lookups are recorded but not blocked

g_orbs_timeout - Seconds to wait for RBL lookups, default is 10 seconds

g_perflog_disable - Completely disable 'perflog' historical performance logging

g_perflog_flush_interval - Interval in seconds to flush the performance log files to disk (default 1hr = 3600)

g_perflog_logall - Log all trend graph counters including undisplayed graphs (recommended)

g_perflog_lowres - Do low resolution perflog sampling (hiding hour scale)

g_perflog_surgeonly - Only log surgemail counters

g_pipelining - Show pipelining in ehlo response - not recommended - has no behavior affect

g_pop_add_size - Improves pop performance on nfs slightly

g_pop_blocksize - Size of packets to read pop messages (best left alone)

g_pop_delay - If true packets are sent in bunches, this slows down some mail clients

g_pop_flush_lines - Fluch to tcp every line of message sent (slow)

g_pop_lock - Lock pop spool

g_pop_max - Max threads for POP + IMAP connections

g_pop_min_skip - Skip ip addresses matching this list.

g_pop_min_time - Min time in seconds between consecutive POP logins, NEVER USE

g_pop_nolock - Allows concurrent pop logins, recommended

g_pop_port - POP3 port to listen on, default is 110

g_pop_secure_port - POP3 SSL secure port to listen on, default is 995

g_popfetch - Fetch incoming mail from another pop server

g_popfetch_interval - Interval between popfetch attempts in seconds

g_popfetch_kick - If true then popfetch will try and open the link for 10 seconds, then retry, this should bring up ISDN lines.

g_popfetch_nodup - Drop duplicate messages

g_ppd_port - PopPassD port for setting passwords, default is 106

g_proxy - Proxy mode (only set on front end server(s) )

g_proxy_default - Proxy mode default forward to host

g_proxy_to_gateways - Proxy pop/imap connections to matching gateway settings

g_proxy_webmail - Redirect user.cgi logins to external host name

g_pstat_disable - Disable pstat per user accounting (for debugging)

g_queue_limit - If on disk queue exceeds this block incoming mail

g_queue_max - Size of internal que file cache, range 500-3000

g_queue_warning - If on disk queue exceeds this send manager a warning

g_quota - Disk quota for users in specified g_access_group

g_quota_disable - Disable quota system

g_quota_friends - Count friends pending messages as part of quota

g_quota_rcpt_disable - Disables quota check at rcpt stage

g_quota_report - Send quota warnings to the manager

g_quota_skip - Skip quota for matching ip addresses

g_quota_try_later - Give 450 response if user is over quota so message will be resent

g_quota_warning_disable - Disables the 80% quota warning message

g_rcpt_bang - Allow bang character in addresses

g_rcpt_colon - Allow colon character in addresses

g_rcpt_max - Max recipients per message, default 1000, can only be lower than 3000.

g_rcpt_max_in - Limit for recipients of untrusted channels, default g_rcpt_max

g_rcpt_msg - Response given for invalid recipient errors, message is prefixed by email address.

g_rcpt_nodup - Ignore duplicate recipients to the same user

g_rcpt_quote - Allow quote character(s) in addresses

g_rcpt_trace - Add X-Rcpt-Trace headers

g_rdns_timeout - Timeout for reverse DNS lookups default is 30 seconds

g_received_name - Name shown in received headers

g_received_names - List of valid received names for incoming email

g_received_skip - Skip local received header for trusted users (authenticated or g_relay...)

g_received_skip_all - Skip local received header for messages that have non local recipients

g_recent_bypass - Bypass recent failure checking

g_record_days - Days to keep record of incoming messages, default 90

g_record_hash - Hash storage of daily .rec files

g_record_path - Directory for daily .rec files defaults to G_HOME

g_redirect - Redirect messages from 'was' to the new 'to' address

g_redirect_cc - Send carbon copy to another address

g_redirect_from - Redirect if from envelope matches

g_redirect_from_cc - Send carbon copy if from envelope matches

g_redirect_hide - Hide the redirection in the output

g_redirect_iflocal - If local domain, then apply redirect

g_redirect_ignore_errors - Accept email even if redirected addresses fail

g_relay_allow_from - Allow relaying from users if the from envelope and from header match this NEVER USE, SPAMMERS ABUSE THIS

g_relay_allow_ip - Allow relaying from users at this ip address

g_relay_dom_and_ip - Allow relaying if from envelope and ip address both match

g_relay_ifnot - Accept locally only if not from this ip

g_relay_message - Message to give to users who try to relay through your system

g_relay_process - Relay process, e.g. testip.exe $WHOIP, return 1 to allow relaying, 0=deny

g_relay_to - Relay to this domain from anyone

g_relay_to_user - Relay to specific user from anyone

g_relay_window - Minutes to allow relay after pop/imap login NOT RECOMMENDED

g_relay_window_from - Requires pop authed user is in from header of sent message

g_rename_files - Wild card list of files to rename, e.g. *.exe,*.cmd (see help for defaults)

g_responder_delay - Delay between responses to the same address.

g_responder_safer - Only respond if the sender can be verified in some way (spf/domainkeys)

g_restart - Restart server if it dies

g_retry_bounces - Max hours to keep trying to deliver a bounce, default is 48hrs

g_retry_dns - Hours to keep trying if dns response suggested invalid domain name, default 0

g_retry_limit - Max hours to keep trying to deliver a message, default is 48hrs

g_retry_minutes - Time between attempting resends, defaults to 60 minutes

g_retry_rule - Time to keep messages in queue for various domains

g_retry_unwarn - Send user sent on confirmation if warning sent

g_retry_warn - Send user a warning if first send fails

g_retry_warn_n - Send user a warning if nth send fails

g_route - Route messages matching particular wildcard spec to specified server

g_route_by_tohost - Route messages using server specified in 'tohost' in authent database

g_route_except - IP exception to g_route / g_route_by_tohost

g_sample_get - Sample account to check if deliveries work

g_sample_show - Headers to show from sample messages

g_scan_action - Converts return value from g_scan_cmd, action=drop,accept,bounce

g_scan_cmd - Run command on message, and return integer, see g_scan_action

g_sched_utoken_timeout - Timeout for sched utokens in minutes

g_send_backoff - Seconds to leave slow responding host alone (default 900)

g_send_body_end_retry - Try again if connection fails after entire body sent

g_send_body_noretry - If a send fails during the body send give up at once.

g_send_body_once - Don't try 3 times if failure occurs sending body

g_send_conspeed - Outgoing connections per second per destination, default is 4

g_send_delay - Wait this many seconds after sending each item.

g_send_first_retry - Minutes for first retry, default is 16 minutes, do not adjust!

g_send_helo - Fully qualified domain to use for all outgoing SMTP helo commands and MessageIDs

g_send_helo_from - Use matching domain name if we have one if user is authenticated/trusted AVOID THIS!

g_send_helo_in - Lookup dns name of incoming ip connection on local interface

g_send_lines - Send messages in single line packets, slow!

g_send_lowpriority - Ip address of bulk sending servers

g_send_max - How many concurrent sending sessions in total

g_send_max_perchan - Msgs to send on one open channel

g_send_max_perdom - How many concurrent sessions allowed to another domain, default is 2

g_send_max_rcpt - How many rcpt's to send per message when sending

g_send_no_domain - Message to show when domain points to us but can't find user or domain

g_send_nolimit - Don't apply g_max_perdom limit when sending to this domain

g_send_nopoll - Use sleep loop instead of poll (debugging only)

g_send_noskipslow - Don't remember hosts that are slow to open and avoid them

g_send_onpopfetch - Only send outgoing while doing a popfetch (For dialup use)

g_send_open_timeout - Timeout, in seconds when opening a link

g_send_retry_552 - Retry on 552 responses (typically quota exceeded)

g_send_rewrite - Rewrite envelope recipient at send stage, does not change destination server

g_send_speed - Bytes per second to limit each outgoing channel to, default no limit, eg 10k

g_send_timeout - Timeout, in seconds when sending, default is 540 (9 minutes)

g_send_tolimit - Limit speed to send to one or more domains.

g_server_name - SERVER_NAME to set for list of wildcard urls

g_server_stamp - Replaces SurgeMail and version string in received headers

g_setpassword_firstlogin - Accept any password on first POP login and set in database (EMERGENCY USE ONLY, requires nwauth -reasonfail parameter)

g_share_home - Allow sharing of home directory

g_share_mail - Set true if mail area is shared (by nfs or other mechanism)

g_share_quota - Do quota on disk (e.g. when using nfs shared spool)

g_shutdown_slow - Add 20 second delay to shutdown for debugging

g_slow_welcome - Add 30 second delay to welcome message for debugging

g_smite_all - Add spamdetect and smitematch headers to all messages going past

g_smite_gateway - Add spamdetect and smitematch headers to gatewayed/redirected messages

g_smite_level - If smitematch score is above this drop message (just throw it away) e.g. 1

g_smite_skip - Whitelist/Skip spam scanner (and spf) if from matches this wild card (Whitelist)

g_smite_skip_auth - Skip spam scanner if user logged in

g_smite_skip_ip - Skip spam scanner if senders ip matches

g_smite_skip_relay - Skip spam scanner if ip can relay

g_smite_skip_to - Skip spam scanner if to matches this wild card

g_smite_tag - Tag message with smitematch header if message is in spam database when read

g_sms_forward - Specifies IP's which are allowed to forward to SMS gateways

g_sms_gateway - Address and port of your sms gateway

g_sms_gateway_force - Force sms notifications to go to g_sms_gateway

g_sms_gateway_msgbytes - Maximum amount of message to send to g_sms_gatway (bytes)

g_smtp_big - Slow down incoming SMTP reads to get bigger packets (experimental)

g_smtp_bounce_nslow - Number of handles to use for doing slow rejections of smtp connections

g_smtp_cmd_timeout - Seconds to wait after getting a message for next command (sendmail bug)

g_smtp_cram_enable - Enable CRAM-MD5 authentication (requires nwauth 4.0h or greater)

g_smtp_data_timeout - Seconds for timeout for data input, default 540 (9 minutes)

g_smtp_delay_stamp - Stamp header if sender sends data before seeing welcome response (usually spam)

g_smtp_etrn_auth - Only do etrn processing if user is authenticated

g_smtp_fast_bounce - Reject bad connections immediately

g_smtp_fix_nohead - Accept messages with no headers and try and cope

g_smtp_help_disable - Disable help in SMTP (minor security issue)

g_smtp_log_protocol - If true log SMTP protocol to log file

g_smtp_log_size - Size of smtp.log file

g_smtp_max - Max concurrent incoming SMTP connections

g_smtp_max_nolimit - Ip addresses that don't have max smtp limit applied

g_smtp_max_reason - Reason to give to user if g_smtp_max is exceeded

g_smtp_maxbad - Max bad command per session before dropping smtp link, default no limit

g_smtp_no_brackets - Allow from/rcpt without angle brackets

g_smtp_noauth - Accept incoming SMTP from these IPs (other IPs allowed if authenticated), default is *

g_smtp_noauth_msg - Message given when sender is told to use authentication because of g_smtp_noauth

g_smtp_port - SMTP port to listen on, default is 25

g_smtp_portauth - SMTP ports which require smtp authentication, typically 587

g_smtp_secure_port - SMTP SSL secure port to listen on, default is 465

g_smtp_thread - Use seperate thread for incoming SMTP connections

g_smtp_vrfy_msg - Change Response to VRFY, e.g. 252 Not telling

g_smtp_welcome_delay - Seconds to delay welcome message, drop if we get data before we send welcome, recommend 1-3 seconds

g_spam_allow - IP Wild card exceptions to spam limits

g_spam_allow_disable - Disable allow bounce messages

g_spam_allow_known - Unblock IP address if we have received messages from it for 3 days (so it's not a transient spammer)

g_spam_allow_msg - Template for unblock messages, use ||reason|| and ||allow|| and maybe a url

g_spam_allow_rbl - Give unblock message to RBL bounces too

g_spam_allow_recent - Skip spam rules if recent pop ip number

g_spam_aspam - Scale for aspam, default is 1.0, Valid range is zero to two

g_spam_autotrain - Auto train spam filter good messages based on first 1000 outgoing emails

g_spam_block - Block spam (as decided by spf etc), if not set then user or domain can set

g_spam_block_gateway - Block spam gatewayed messages too

g_spam_block_msg - Template for spf blocked message if allow is disabled

g_spam_body - If spamdetect score is above this, add spamdetect header at top of message body NOT RECOMMENDED e.g. 7

g_spam_body_more - Add more info to spam body (ip address, ptr address, reply to and bounce address)

g_spam_body_url - Text part of info to add to body, usually a url to your site

g_spam_bounce - If spamdetect score (number of '*'s) is above this, bounce message if local delivery. NEVER USE THIS

g_spam_bounce_all - If spamdetect score is above this, bounce message, applies to all messages regardless of user settings. e.g. 7 NEVER USE THIS

g_spam_bounce_text - Error to return to user when message is bounced due to g_spam_bounce setting

g_spam_bounce_trusted - If spamdetect score is above this, bounce message if trusted (spam_allow or authenticated)

g_spam_catcher - Addresses on web pages that shouldn't get any email (robot bait)

g_spam_char - Character to use instead of '*' for smitespam headers (best left alone if possible)

g_spam_check_auth - Don't skip spam rules for authenticated users

g_spam_cmd - Command line spam checker, use $FILE$ in cmd parameters

g_spam_content_disable - Disable aspam_content.txt rules

g_spam_flag - Add X-SPAM-FLAG: Yes header if smite score is above this level

g_spam_folders - Train on any message dropped into the relevant folders

g_spam_folders_show - List the special folders for all users

g_spam_from_blacklist - Fetch list of bad domains to reject email from - not recommended

g_spam_grey - OBSOLETE DO NOT USE, Enable old greylisting for spf mechanism

g_spam_grey_bounce - Bounce if message was allowed due to grey listing, and spam score is above this, default 8 (was 4)

g_spam_grey_classc - Apply grey listing to x.x.x.*

g_spam_grey_dflt - Enable greylisting for spf default accept events (not recommended)

g_spam_grey_dflt_bad - Enable greylisting instead of allow in some cases (recommended for block or strict)

g_spam_grey_nofive - Skip 5-6 minute black window for these domains

g_spam_grey_nohard - Avoid hard spf bounces always try and do a grey list instead

g_spam_grey_nseen - Number of messages from an unknown host, default is 6

g_spam_grey_size - Size of grey listing table, default is 3000

g_spam_grey_verify - Skip grey listing if host was not listening

g_spam_grey_window - Window to block bad messages, typically 60 seconds

g_spam_header_trust_ip - List of IP addresses from which to trust/accept existing X-SpamDetect headers in emails

g_spam_hold_keep - Number of days to store users spam hold messages before deleting them

g_spam_info - Info line and url to explain aspam system

g_spam_info_hide - Removes the x-spamdetect-info header line

g_spam_internal - Enable new 'internal' spam processing

g_spam_isspam_kind - Allow isspam from recent pop, gateway to etc

g_spam_notrain - Disable isspam and notspam addresses for user training

g_spam_notspam - Address that non authenticated users can send non spam to.

g_spam_noupdate - Disable fetch of aspam filter rules etc from netwinsite

g_spam_poly - Scale for poly word matching, default is 0.1, Valid range is zero to two, Use 1.0 to enable, EXPERIMENTAL

g_spam_poly_disable - Disable poly code.

g_spam_private - Enable users to define 'private' extensions to their email address to avoid spam (EXPERIMENTAL)

g_spam_share - Use and share some spam/aspam information with central server (netwin) experimental