Provided by: postfix-mta-sts-resolver_0.7.5-1_all bug

NAME
       mta-sts-daemon.yml - configuration file for mta-sts-daemon


DESCRIPTION
       This configuration file configures the listening socket, caching behaviour, and
       manipulation of MTA-STS mode.


SYNTAX
       The file is in YAML syntax with the following elements:

       host: (str) daemon bind address

       port: (int) daemon bind port

       path: (str) daemon UNIX socket bind address (path). If specified, host and port are
       ignored and UNIX socket is bound instead of TCP.

       mode: (int) file mode for daemon UNIX socket. If not specified default filemode is used.
       This option has effect only when UNIX socket is used. If file mode specified in octal form
       (most common case), it has to be prepended with leading zero. Example: 0666

       reuse_port: (bool) allow multiple instances to share same port (available on Unix,
       Windows)

       cache_grace: (float) age of cache entries in seconds which do not require policy refresh
       and update. Default: 60

       shutdown_timeout: (float) time limit granted to existing client sessions for finishing
       when server stops. Default: 20

       cachetype: (str: internal|sqlite|redis) cache backend type

           •   options:

               •   Options for internal type:

                   •   cache_size: (int) number of cache entries to store in memory

               •   Options for sqlite type:

                   •   filename: (str) path to database file

                   •   threads: (int) number of threads in pool for SQLite connections

                   •   timeout: (float) timeout in seconds for acquiring connection from pool or
                       DB lock

               •   Options for redis type:

                   •   All parameters are passed to aioredis.create_redis_pool [0]. Check there
                       for a parameter reference.

       default_zonestrict_testing: (bool) enforce policy for testing domains

           •   timeout: (int) network operations timeout for resolver in that zone

       zonesZONENAME:

               •   Same as options in default_zone

       The timeout is used for the DNS and HTTP requests.

       MTA-STS "testing" mode can be interpreted as "strict" mode. This may be useful (though
       noncompliant) in the beginning of MTA-STS deployment, when many domains operate under
       "testing" mode.


EXAMPLE
           host: 127.0.0.1
           port: 8461
           reuse_port: true
           shutdown_timeout: 20
           cache:
             type: internal
             options:
               cache_size: 10000
           default_zone:
             strict_testing: false
             timeout: 4
           zones:
             myzone:
               strict_testing: false
               timeout: 4


SEE ALSO
       mta-sts-daemon(1), mta-sts-query(1)


NOTES
       0.
           https://aioredis.readthedocs.io/en/latest/api_reference.html#aioredis.create_redis_pool