On Fri, 9 Apr 1999, Greg Owen wrote:
> I think the gist of what he's saying is that you can use the variable
> setting capabilities of tcpserver (shown here modifying "RELAYCLIENT") to
> set other variables. One of these variables modifies the Received line's
> "from [host]", and another modifies the IP address associated with that
> host.
Okay, I got onto the machine that I'm doing this with right now.
Here's the tcp.smtp (tcpserver) line I'm using to masquerade my
internal mail store's IP and name.
13.246.76.26:allow,RELAYCLIENT="",TCPREMOTEHOST="mail.scansoft.com",
TCPREMOTEIP="192.168.0.1"
13.246.76.26 is the mail store/server's Real IP.
allow,RELAYCLIENT="" says this host is allowed to relay.
TCPREMOTEHOST and TCPREMOTEIP affect what qmail puts in the
Received: headers. Here is the Received: header that results:
Received: from mail.scansoft.com (192.168.0.1)
by munin.scansoft.com with SMTP; 9 Apr 1999 18:15:19 -0000
Viola. The Received header no longer gives out information about
my internal, firewalled mail store, thus denying that tiny tidbit of
information to attackers.
I found these variables in one of the man pages, presumably from
tcpserver, but haven't looked to make sure.
--
gowen -- Greg Owen -- [EMAIL PROTECTED] -- [EMAIL PROTECTED]
Please note my new [EMAIL PROTECTED] address which will
become my default address in March, and which works now.
