Redacting sensitive mail headers for authenticated clients

public inbox for development@lists.ipfire.org
 help / color / mirror / Atom feed

From: peter.mueller@ipfire.org
To: development@lists.ipfire.org
Subject: Redacting sensitive mail headers for authenticated clients
Date: Sun, 13 Oct 2019 12:25:00 +0000	[thread overview]
Message-ID: <41e264d5-0d04-19f5-ef4b-fb8e8c82cc95@ipfire.org> (raw)

[-- Attachment #1: Type: text/plain, Size: 1257 bytes --]

Hello *,

as of today, our primary mail server, mail01.haj.ipfire.org, will
redact IP address and HELO banner of messages received from
authenticated clients (i.e. those who send via submissions.ipfire.org).
Other mails remain unchanged.

Stripping out other sensitive metadata such as User-Agent headers
was in place for several weeks now, and as far as I am concerned,
there were no complaints about it.

Since the IP address reveals ISP, internal details and possibly the
location of a sender, I consider removing it to be important in
order to protect privacy of anyone using our mail infrastructure.

Redacted Received headers will look like this one:
> Received: from [127.0.0.1] (localhost [127.0.0.1])
> 	(using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits))
> 	(Client did not present a certificate)
> 	by mail01.ipfire.org (Postfix) with ESMTPSA id 46rgZ44pV1z2MS
> 	for <test(a)lists.ipfire.org>; Sun, 13 Oct 2019 12:13:00 +0000 (UTC)

If necessary, we are still able to look up the sender's IP address
in the mail server log files. For the rest of the world, it's just none
of their business.

Please let me know if you experience any issues with this our our
mail systems in general.

Thanks, and best regards,
Peter Müller

                 reply	other threads:[~2019-10-13 12:25 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=41e264d5-0d04-19f5-ef4b-fb8e8c82cc95@ipfire.org \
    --to=peter.mueller@ipfire.org \
    --cc=development@lists.ipfire.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox