Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Troy Davis (troynack.net)
Date: Tue Apr 10 2007 - 01:04:48 CDT
Is there a config knob for not adding a Received header to mail
submitted by authenticated users?
From the docs and FAQs, it looks like I could enable
smtpd_sasl_authenticated_header then use header_checks to strip Received
headers mentioning auth. I'm wondering whether there's a simpler way.
Here's the context:
Roving users send mail from coffee shop hotspots, dialup, and other
low-trust networks, some of which are listed on DNS blacklists.
Also, at least one client (Mozilla Thunderbird) sends its IP address as
HELO. These users are usually behind NAT, so their RFC 1918 HELOs trip
spam filters like SpamAssassin's FORGED_RCVD_HELO rule. (More on
Thunderbird HELO: https://bugzilla.mozilla.org/show_bug.cgi?id=244030)
Because of the low-trust last mile and client cruft, their mail scores
artificially high on spam filters. Hotmail has blocked mail based
solely on the two factors above.
I can track every message to an individual, so I'm comfortable passing
our mail server's reputation on to their messages. As it happens, they
can already appear to originate from our server using webmail; this
would just duplicate it via SASL.