On Mon, Dec 26, 2011 at 08:25:42PM -0600, Noel Jones wrote:
> The BOFH solution is a custom cleanup_service_name with alternate
> header_checks on the pickup service that removes user-supplied From:
> headers. Postfix will supply a standard header based on the UID.
IIRC this won't work. The default uid-based "From: " header is
added by postdrop(1), which is upstream of cleanup(8).
This also breaks "Resent" mail, and .forward files. All in all,
the OP's desire is to do more harm than good. I understand the
motivation, but I've try to persuade my employer to instead just
audit the headers of messages for actual malicious mismatch between
uid and "from:" without implementing largely counter-productive
preventive controls.
--
Viktor.
