Re[2]: 9.2.2.1 PRIVACY violation: The Bat! inserts local hostname (from LAN) instead of IP in brackets
Hello, > The Bat! has a privacy issue which could reveal internal structure of a > company LAN. This topic is more complex than it might look like at the first glance. There are way too many SMTP-servers which deny connections if the email client uses something like [192.68.1.20] during the handshake. In order to avoid such issues The Bat! uses legal means and carries out a reverse DNS lookup and uses the domain name associated with the source IP-address during the handshake with the SMTP-server. Although revealing the domain name might look like the lack of anonymity, in reality it is the originating IP-address (which is anyway included in the headers by the mail server itself) that makes the sender lack anonymity. You can still disguise the domain name in the settings of your local hardware, but there is nothing you can do to prevent the mail server include the originating IP-address. -- Alexander Petrari Ritlabs, SRL 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html
Re: 9.2.2.1 PRIVACY violation: The Bat! inserts local hostname (from LAN) instead of IP in brackets
Hello list, hello Stefan, The Bat! has a privacy issue which could reveal internal structure of a company LAN. 1. Send a mail to yourself 2. Receive it 3. Inspect source 4. Check last "Received: from" mail header Could say something like Received: from service2.fritz.box (p5dcf13e5.dip0.t-ipconnect.de [93.207.19.229]) Thunderbird generates only for the header: Received: from [192.68.1.20] (p5dcf13e5.dip0.t-ipconnect.de [93.207.19.229]) What happens on your PCs with the header? Also revealing information? This anonymization is a missing feature and in such times of lack of privacy not really useful! What do you think? I would like to get such anomyzation like Thunderbird does in mail header. -- Regards Gwen Using The Bat! Version 9.2.2.1 (BETA) (32-bit) on Windows 10.0 (Build 19041 ) 'Using TBBETA' information: http://www.silverstones.com/thebat/TBUDLInfo.html
