about postfix and Mailscanner
Cheng Bruce
itlist at gmail.com
Fri Sep 29 16:46:36 IST 2006
HI Gleen and Drew,
Excuse me for my bad expression and thank you for your reminding.
Yes, you are right.
I just read Fajar's messages and want to know if that function works.
But it is not like what I thought, it can't remove specific header
which is contained some specific words.
Thank you for your help in this case.
Best Regards,
Bruce
2006/9/29, Glenn Steen <glenn.steen at gmail.com>:
> On 29/09/06, Cheng Bruce <itlist at gmail.com> wrote:
> > Hi Fajar,
> >
> > Thank you for your tip.
> > But I didn't work it out, I think my setting is maybe wrong, would you
> > please advise me ?
> > PS: After modifying, I did restart service via "service MailScanner restart"
> >
> > Thank you in advance.
> >
> > I tried to remove the private information of messages from inside to
> > outside and tried to remove the MUA header if the MUA is webmail
> > (IMP).
> >
> > But both of them are failed.
> >
> > /etc/MailScanner/rules/remove.headers.rules
> >
> > FromOrTo: 192.168.1. User-Agent: Internet Messaging Program
> > (IMP) H3 (4.1.3):
> > FromOrTo: 192.168.1. Received: from 192.168.1.:
> > FromOrTo: default X-Mozilla-Status: X-Mozilla-Status2:
> >
> (snip)
> No. Take a breath, then go read the documentation for that setting you
> are using (or lift your eyes just an inch, and there it is:-).
> This is simply not how it works. You only specify the _header names_
> you want to remove. And it'll remove _all_ those headers.
>
> And again: Why on earth would you want to do this?! It is at best naive.
> It buys you no security. So what that you use private network
> addresses? If your internet gateways are setup correctly they will not
> even route that type of address.
>
> Thing is, communication is atwo-way thing, you'll reveal all sorts of
> things bout your organization anyway... And "dousing" these
> _mandatory_ _non-editable_ headers is just not a particularily good
> measure.
>
> If you want to hide the fact that it is IMP you are using for webmail,
> then do that in IMP, where it is appropriate, or be very specific in
> your rule, so that you only remove private address headers for that
> particular server (assuming you're not buying my reasoning above, and
> still want to break RFC compliance:-).
> Something like:
> From: 192.168.1.86 Received: User-Agent:
> FromOrTo: default X-Mozilla-Status: X-Mozilla-Status2:
> ... and remember to reload/restart MailScanner to make the rules take
> effect immediately.
> --
> -- Glenn
> email: glenn < dot > steen < at > gmail < dot > com
> work: glenn < dot > steen < at > ap1 < dot > se
> --
> MailScanner mailing list
> mailscanner at lists.mailscanner.info
> http://lists.mailscanner.info/mailman/listinfo/mailscanner
>
> Before posting, read http://wiki.mailscanner.info/posting
>
> Support MailScanner development - buy the book off the website!
>
More information about the MailScanner
mailing list