-form. Replace the words mypopserver, mylogin, and mypassword with
-your own account information.
-
-machine mypopserver login mylogin password mypassword
-
-This \*(lq.netrc\*(rq file should be owned and readable only by
-you.
-
-If \fIinc\fR uses POP, then the `\-pack\ file' switch is considered.
-If given, then \fIinc\fR simply uses the POP to \fIpackf\fR\0(1) the
-user's maildrop from the POP service host to the named file. This switch
-is provided for those users who prefer to use \fImsh\fR to read their
-maildrops.
-
-For debugging purposes, you may give the switch `\-snoop', which will
-allow you to watch the POP transaction take place between you and the
-POP server.
-
-If nmh has been compiled with KPOP #defined, the `\-kpop' switch will allow
-\fIinc\fR to use Kerberized POP rather than standard POP3 on a given invocation.
-If POPSERVICE was also #defined to "kpop", \fIinc\fR will be hardwired to always
-use KPOP.
-%nmhendpop%
-.Fi
+form. Replace the words
+.IR mypopserver ,
+.IR mylogin ,
+and
+.I mypassword
+with your own account information.
+.PP
+.RS 5
+.B machine
+.I mypopserver
+.B login
+.I mylogin
+.B password
+.I mypassword
+.RE
+.PP
+This
+.RI \*(lq .netrc \*(rq
+file should be owned and readable only by you.
+.PP
+If passed the
+.B \-proxy
+.I command
+switch,
+.B inc
+will use the specified command to establish the connection to the POP
+server. The string
+.IR %h
+in the command will be substituted by the hostname to connect to.
+.PP
+If
+.B inc
+uses POP, then the
+.B \-pack
+.I file
+switch is considered. If given, then
+.B inc
+simply uses the POP to
+.B packf
+the user's maildrop from the POP service host to the named file. This switch
+is provided for those users who prefer to use
+.B msh
+to read their maildrops.
+.PP
+For debugging purposes, you may give the switch
+.BR \-snoop ,
+which will allow you to watch the POP transaction take place
+between you and the POP server.
+.PP
+If
+.B nmh
+has been compiled with SASL support, the
+.B \-sasl
+switch will enable
+the use of SASL authentication. Depending on the SASL mechanism used, this
+may require an additional password prompt from the user (but the
+.RI \*(lq .netrc \*(rq
+file can be used to store this password). The
+.B \-saslmech
+switch can be used to select a particular SASL mechanism.
+.PP
+If SASL authentication is successful,
+.B inc
+will attempt to negotiate a security layer for session encryption.
+Encrypted traffic is labelled with `(encrypted)' and `(decrypted)'
+when viewing the POP transaction with the
+.B \-snoop
+switch.
+.SH FILES
+.fc ^ ~
+.nf
+.ta \w'%etcdir%/ExtraBigFileName 'u