From owner-freebsd-chat Wed May 15 11:32:17 2002 Delivered-To: freebsd-chat@freebsd.org Received: from pintail.mail.pas.earthlink.net (pintail.mail.pas.earthlink.net [207.217.120.122]) by hub.freebsd.org (Postfix) with ESMTP id 3E7FD37B409 for ; Wed, 15 May 2002 11:32:11 -0700 (PDT) Received: from pool0412.cvx21-bradley.dialup.earthlink.net ([209.179.193.157] helo=mindspring.com) by pintail.mail.pas.earthlink.net with esmtp (Exim 3.33 #2) id 1783ZE-0004qa-00; Wed, 15 May 2002 11:32:05 -0700 Message-ID: <3CE2A986.E9A1F22B@mindspring.com> Date: Wed, 15 May 2002 11:31:34 -0700 From: Terry Lambert X-Mailer: Mozilla 4.7 [en]C-CCK-MCD {Sony} (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: Drew Raines Cc: freebsd-chat@freebsd.org Subject: Re: internal hosts in email References: <3CE2702A.A67642FE@centtech.com> <20020515150303.GU16671@williams.mc.vanderbilt.edu> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Drew Raines wrote: > > The problem is, the mail headers show all the internal hosts that > > the mail passed (via the Received: lines), and I think that is a > > security risk. > > No. If you're concerned because of the software you're running, run > better software. > > > Does anyone have a trick to remove those using the .mc files? > > Obscurity is not security. MTA's add those fields for a reason. If > you ever have to diagnose a mail delivery problem, you'll probably > want them there. Certain internal names should not be exposed because they will fail DNS lookup, and therefore will fail origin checking by mail servers which require that email messages be replyable, like God and RFC 821 intended. -- Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message