On Mon, May 18, 2009 at 17:36, Victor Duchovni
<victor.ducho...@morganstanley.com> wrote:
> On Mon, May 18, 2009 at 09:42:08AM -0500, Noel Jones wrote:
>
> > IF /^Received: .*by mail.my.domain/
> > IF /no client certificate/
> > /(.*)\(No client certificate requested\)(.*)/
> > REPLACE $1 $2
> > ENDIF
> > ENDIF
>
> This will leave a blank line in the middle of the folded header, which
> violates RFC5322. With PCRE:
>
> # If $mail_name is not "Postfix" adjust accordingly...
> /^(Received: from \S+ \S+ \S+\n\t\([^\n]*\)\n)\t\(No client certificate
> requested\)\n((?:\t\([^\n]*\)\n)*?\tby mail\.example\.com \(Postfix\).*)/
> REPLACE ${1}${2}
Thanks. This works.
> This deals with optional "(Authenticated sender: ...)" comments between
> the TLS comments and "by mtahost ...". It errs on the side of not removing
> the client cert comment if at all in doubt, by making sure that all the
> expected elements are in the expected form and place.
>
> This said, the whole thing is a waste of time. Just leave the comment
> there, it does no harm.
Hmm.. the reason I wanted to do this is precisely because it already caused harm
by upsetting silly users that worried they were doing something wrong in the
way their clients were configged. Explaining that it does no harm is not really
functional in such cases, is my experience..
Julius
