On 12/4/2014 2:20 PM, Martin Vegter wrote:
When I send email via my Postfix, the header actually contains the IP
address of my laptop. Such as 192.168.1.113 [12.34.56.78]) in the
example below:

Received: from mail.origin.com (mail.origin.com [65.254.242.180])
         by mail.destination.com (Postfix) with ESMTPS id 31A1B66
         for <[email protected]>; Thu,  4 Dec 2014 21:00:36 +0100 (CET)
Received: from [192.168.1.113] (unknown [12.34.56.78])
         by mail.origin.com (Postfix) with ESMTPSA id 08AE908
         for <[email protected]>; Thu,  4 Dec 2014 21:00:36 +0100 (CET)

Is it possible to disable this, or would that constitute "breaking
standards" ?
Is there any use in exposing my laptop IP address?

PS: I understand that in the above example, 192.168.1.113 is a
non-routable IP. But it could be any IP, depending on the client.

thanks,
Martin


A few weeks back I was also surprised to see that the client IP was being sent out in the headers. Two options that I found in my research:

#1) Enabling the "smtpd_sasl_authenticated_header" option and using header_checks to remove that header (which if I am not mistaken checks all email).

http://moblog.wiredwings.com/archives/20100501/remove-ips-from-outgoing-mail-postfix-smtp.html

#2) Creating a new service in master.cf that you hook up to your submission (or otherwise authenticated) service and use header checks to search/replace against your client info as shown here:

https://major.io/2013/04/14/remove-sensitive-information-from-email-headers-with-postfix/#comment-63131

That approach appears to be cleaner/more efficient as it should only touch mail sent by authenticated users and not all email.

I went with option #2 about a month ago and so far so good.

Reply via email to