Since certain MUAs such as MS Outlook allow the user to label messages as "confidential" which according to http://www.faqs.org/rfcs/rfc1327.html gets translated into MIME header "Sensitivity=Company-Confidential", quite some secure mail gateways ensure higher transmission secrecy (e.g. "smtp_enforce_tls") for such messages.
To not loose such labeling, some MUAs also set this MIME-Header upon replies/forwards. Unfortunately, if such a message causes a bounce (e.g. inexistent recipient), postfix sends such a bounce without the sensitivity header. This can cause contents to be disclosed since not treated properly by above-mentioned gateways (in particular, if the main.cf doesn't say bounce_size_limit=1 [the value 0 is not permitted??]). Is there any reason for postfix not to keep the sensitivity mime header even on DSNs? Ralf ------ Securely and spam-free via: https://www.privasphere.com/e?hau...@acm.org gpg fingerprint: B7BE 9E33 7AA0 9FA5 8D3A 9718 2A20 188E 8782 6F38 https://www.privasphere.com/keys/gpg/RHpub.asc 0x87826F38
