Alexander Moisseev a écrit :
> mouss wrote:
>> if you are talking about your own mail (not customer mail), then
>> differentiate between outbound (submitted) mail and inbound mail. for
>> example, use port 587 for outbound mail (ideally enforce SASL/TLS here).
>> Then for such mail, simply remove a
On Fri, Jul 02, 2010 at 11:13:55AM +0400, Alexander Moisseev wrote:
> If you don't want to use submission, you may remove headers only
> for your local networks (but it may affect on some incoming mail):
> /^Received:.*192\.168\.0\..*/ IGNORE
> /^Received:.*192\.168\.10\..*/ IGNORE
> /^Received:.*
mouss wrote:
if you are talking about your own mail (not customer mail), then
differentiate between outbound (submitted) mail and inbound mail. for
example, use port 587 for outbound mail (ideally enforce SASL/TLS here).
Then for such mail, simply remove all received headers:
/^Received:/IGNO
Rachid Abdelkhalak a écrit :
>
> Hello List,
>
> I have a mail relay and an internal mail server both under Postfix and
> behind a firewall (DMZ and LAN), on both segment i'm using a private IP
> address with NAT.
>
> On all outgoing emails headers sent by our users, i can see my servers
> ip ad
No problem at all. If you need more help, let me know, as this is the
kind of stuff that I deal with here (convincing bosses..).
Btw, unless you get your users to use webmail, their local internal IP
address of their client machines will always be in the email headers -
even if the server is i
Thank you Jonathan.
--
|-Rachid Abdelkhalak
|-Network Security Engineer, MTDS
|-in morocco 080200MTDS
|-direct +212(0)537278820
|-mobile +212(0)661173437
|-14, rue 16 novembre
|-Rabat 10080 Kingdom of Morocco
On Mon, 28 Jun 2010, Jonathan Tripathy wrote:
Hi Rachid,
Ahh the good old "end user
Hi Rachid,
Ahh the good old "end user's boss" problem!
Well I guess the arguments could be that since it's an internal IP
address, there is *no way* it can be accessed from outside. Even if the
boss's firewall left all ports open to the mail server, they couldn't
access it via the internal IP
Me too Matt, but i have to give him a solution or an answer as i'm the
person who maintain their mail plateforme.
Thank you
--
|-Rachid Abdelkhalak
|-Network Security Engineer, MTDS
|-in morocco 080200MTDS
|-direct +212(0)537278820
|-mobile +212(0)661173437
|-14, rue 16 novembre
|-Rabat 10080
On 6/28/2010 1:07 PM, Rachid Abdelkhalak wrote:
>
> This is not a problem for me, the end customer's IT boss asked me to see
> if it is possible to do it, he dont like to publish theire private IPs
> for 'Security reasons'.
>
> If it is not possible, i have to give him convincing arguments.
>
>
This is not a problem for me, the end customer's IT boss asked me to see
if it is possible to do it, he dont like to publish theire private IPs for
'Security reasons'.
If it is not possible, i have to give him convincing arguments.
Thank you
--
|-Rachid Abdelkhalak
|-Network Security Engine
Richid,
Why is it a problem that people see your internal IPs?
Thanks
On 28/06/10 18:03, Rachid Abdelkhalak wrote:
Thank you Jeroen,
My need is to prvent peopel seeing my internal IPs, if i can make my
server write on the header 127.0.0.1 instead instead of the
192.168.0.2 is will be great
Thank you Jeroen,
My need is to prvent peopel seeing my internal IPs, if i can make my
server write on the header 127.0.0.1 instead instead of the 192.168.0.2 is
will be great.
I see on the header of your mail for example, all Received: tags indicate
127.0.0.1, i want my server to do the sa
On 06/27/2010 01:20 PM, Rachid Abdelkhalak wrote:
Hello List,
I have a mail relay and an internal mail server both under Postfix and
behind a firewall (DMZ and LAN), on both segment i'm using a private
IP address with NAT.
On all outgoing emails headers sent by our users, i can see my serve
Hello List,
I have a mail relay and an internal mail server both under Postfix and
behind a firewall (DMZ and LAN), on both segment i'm using a private IP
address with NAT.
On all outgoing emails headers sent by our users, i can see my servers ip
addresses (private).
Is there any config t
14 matches
Mail list logo
