know I have.
Much obliged,
Scott
From: owner-postfix-us...@postfix.org on
behalf of Ralph Seichter
Sent: December 13, 2020 6:14 AM
To: postfix-users@postfix.org
Subject: Re: Security threat posed by names and IPs in SMTP headers
* Scott A. Wozny:
>
for this project),
Scott
From: owner-postfix-us...@postfix.org on
behalf of Wietse Venema
Sent: December 12, 2020 7:32 PM
To: Postfix users
Subject: Re: Security threat posed by names and IPs in SMTP headers
It is really simple. If you allow information to go out, then
Dnia 12.12.2020 o godz. 23:46:42 Scott A. Wozny pisze:
> I know it’s not a Postfix specific
> matter and if anyone thinks I should be posing this question elsewhere,
> please let me know where.
The "mailop" list (https://list.mailop.org/listinfo/mailop ) may be also a
good place to discuss this.
-
* Scott A. Wozny:
> In your average message header there are system names and IPs (both
> often internal) all along the path of delivery which would, on one
> hand, seem to be a needless leak of information useful to a hacker
> but, on the other hand, absolutely critical to troubleshooting mail
>
It is really simple. If you allow information to go out, then you
will leak information. Postfix assumes that you're willing to send
and receive email, and that means you will have to accept some
leakage that is inherent with SMTP, TLS, TCP, DNS, UDP, and related
protocols. The options for message-
