On 10/19/2016 4:15 AM, Security wrote: > Hi, > > So I'm seeing my local IP address and ISP IP in the Recieved: headers > even though I am authenticating through my mail server.
Yes, that's normal and expected. > I'm not sure the > best way to scrub these headers from sent email while preserving the > needed incoming headers for analysis if needed. These two requirements are not compatible. The vast majority of admins fall on the side of keeping highly valuable debug data at the expense of exposing low-value information. Keep in mind you expose your IP with virtually everything you do online, so hiding it in email doesn't make a lot of sense unless you go to a lot of trouble to hide it elsewhere too. It is possible -- but Not Recommended -- to remove or alter the Received: line with header_checks. If you go that route, *Great Care* must be taken to not alter other headers, or Received: headers from other clients. -- Noel Jones
