Re: Replace Private IP by Server Hostname in mail header

Mon, 28 Jun 2010 10:13:15 -0700
Me too Matt, but i have to give him a solution or an answer as i'm the person who maintain their mail plateforme. 

Thank you

--
|-Rachid Abdelkhalak
|-Network Security Engineer, MTDS
|-in morocco 080200MTDS
|-direct +212(0)537278820
|-mobile +212(0)661173437
|-14, rue 16 novembre
|-Rabat 10080 Kingdom of Morocco

On Mon, 28 Jun 2010, Matt Hayes wrote:


On 6/28/2010 1:07 PM, Rachid Abdelkhalak wrote:


This is not a problem for me, the end customer's IT boss asked me to see
if it is possible to do it, he dont like to publish theire private IPs
for 'Security reasons'.

If it is not possible, i have to give him convincing arguments.

Thank you

--
|-Rachid Abdelkhalak
|-Network Security Engineer, MTDS
|-in morocco 080200MTDS
|-direct +212(0)537278820
|-mobile +212(0)661173437
|-14, rue 16 novembre
|-Rabat 10080 Kingdom of Morocco

On Mon, 28 Jun 2010, Jonathan Tripathy wrote:


Richid,

Why is it a problem that people see your internal IPs?

Thanks

On 28/06/10 18:03, Rachid Abdelkhalak wrote:


Thank you Jeroen,

My need is to prvent peopel seeing my internal IPs, if i can make my
server write on the header 127.0.0.1 instead instead of the
192.168.0.2 is will be great.

I see on the header of your mail for example, all Received: tags
indicate 127.0.0.1, i want my server to do the same thing if possible.

Thank you

--
|-Rachid Abdelkhalak
|-Network Security Engineer, MTDS
|-in morocco 080200MTDS
|-direct +212(0)537278820
|-mobile +212(0)661173437
|-14, rue 16 novembre
|-Rabat 10080 Kingdom of Morocco

On Sun, 27 Jun 2010, Jeroen Geilman wrote:


On 06/27/2010 01:20 PM, Rachid Abdelkhalak wrote:


Hello List,

I have a mail relay and an internal mail server both under Postfix
and behind a firewall (DMZ and LAN), on both segment i'm using a
private IP address with NAT.

On all outgoing emails headers sent by our users, i can see my
servers ip addresses (private).

Is there any config that i can do to make postfix write hostname
instead of the ip address on the header or replace the private ip
address by the public ip address?

Thank you

Brest regards.


The format and content of Received: headers is described in detail
in the relevant RFCs.

Make sure you know why you want to mess with them before blundering
forward.

J.







I guess I don't see how an internal private IP is a security risk.

-Matt























					Reply via email to