ram wrote:
On Fri, 2008-05-09 at 01:44 +0200, Benny Pedersen wrote:
On Thu, May 8, 2008 23:19, mouss wrote:
configure postfix to replace previous ones
/^(X\-Envelope\-From:.*)/ REPLACE X-$1
envelope from can here be forged
Precisely what I am afraid of. But the issue is whatever header I use
for envelope-from all of them can be trivially forged
I am trying replacing all the X-Envelope headers before sending them to
scan servers
Return-Path is unique, so if your postfix generates one (if you use a
"pipe" transport, enable the flag to do so), it won't be a forged one.
also, Return-Path is not supposed to be seen in the "wire".
