{"id":1743,"date":"2013-11-24T17:31:27","date_gmt":"2013-11-24T15:31:27","guid":{"rendered":"http:\/\/www.void.gr\/kargig\/blog\/?p=1743"},"modified":"2013-11-24T17:46:43","modified_gmt":"2013-11-24T15:46:43","slug":"anonymize-headers-in-postfix","status":"publish","type":"post","link":"https:\/\/www.void.gr\/kargig\/blog\/2013\/11\/24\/anonymize-headers-in-postfix\/","title":{"rendered":"Anonymize headers in postfix"},"content":{"rendered":"

E-mail headers usually leak some information about the person sending the email. Most servers reveal the sender’s originating IP, but sometimes we might not want this behavior. Here’s a simple way to modify your postfix server to remove just the IP of the sender. The original idea is from https:\/\/we.riseup.net\/debian\/mail<\/a> but with postfix 2.9 version (Debian Wheezy) using the way proposed in the riseup article you will also be anonymizing all intermediate ‘Received: from’ headers and not just the sender’s. The setup proposed by riseup article seems to work fine with postfix 2.7 (Debian Squeeze).<\/p>\n

1.<\/strong> Install postfix-pcre<\/em> if you haven’t already.
\n# apt-get install postfix-pcre<\/code><\/p>\n


\n2.<\/strong> Create a file \/etc\/postfix\/smtp_header_checks<\/em> with content:
\n\/^\\s*(Received: from)[^\\n]*(.*)\/ REPLACE $1 [127.0.0.1] (localhost [127.0.0.1])$2<\/code><\/p>\n


\n3.<\/strong> Edit \/etc\/postfix\/master.cf<\/em>
\nFind the section about submission and add at the end of it: -o cleanup_service_name=subcleanup<\/code>
\ne.g.
\n

submission inet n       -       -       -       -       smtpd\n  -o smtpd_tls_security_level=encrypt\n  -o smtpd_sasl_auth_enable=yes\n  -o smtpd_client_restrictions=permit_sasl_authenticated,reject\n  -o milter_macro_daemon_name=ORIGINATING<\/code2><\/pre><\/p>\n
submission inet n       -       -       -       -       smtpd\n  -o smtpd_tls_security_level=encrypt\n  -o smtpd_sasl_auth_enable=yes\n  -o smtpd_client_restrictions=permit_sasl_authenticated,reject\n  -o milter_macro_daemon_name=ORIGINATING\n  -o cleanup_service_name=subcleanup<\/code2><\/pre><\/p>\n
Then at the end of \/etc\/postfix\/master.cf<\/em> file add the following:
\n
subcleanup unix n       -       -       -       0       cleanup\n    -o header_checks=pcre:\/etc\/postfix\/smtp_header_checks<\/code2><\/pre><\/p>\n
That’s it, reload your postfix and you’re done. When you’ll be sending emails over submission (you do use submission instead of smtp to send your emails, right?) then the first ‘Received’ header will be modified like the following example.
\nInstead of:
\n
Received: from foo.bar (abcd.efgh.domain.tld [111.222.100.200])\n        by mail.domain.tld (Postfix) with ESMTPA id BAB8A1A0224\n        for <user@dst.domain2.tld>; Sun, 24 Nov 2013 15:47:50 +0100 (CET)<\/code2><\/pre><\/p>\n
It will be:
\n
Received: from [127.0.0.1] (localhost [127.0.0.1])\n        by mail.domain.tld (Postfix) with ESMTPA id BAB8A1A0224\n        for <user@dst.domain2.tld>; Sun, 24 Nov 2013 15:47:50 +0100 (CET)<\/code2><\/pre><\/p>\n
Extra<\/strong>
\nIf you want to anonymize even more headers, try adding the following to \/etc\/postfix\/smtp_header_checks
\n
\/^\\s*User-Agent\/        IGNORE\n\/^\\s*X-Enigmail\/        IGNORE\n\/^\\s*X-Mailer\/          IGNORE\n\/^\\s*X-Originating-IP\/  IGNORE<\/code2><\/pre><\/p>\n
Logging<\/strong>
\nAs the riseup article says, be very careful of what is being logged<\/em> at the server. If you don’t want to log the replacements done by pcre then add something like the following in your rsyslog.conf before any other rule:
\n:msg, contains, \"replace: header Received:\" ~<\/code><\/p>\n","protected":false},"excerpt":{"rendered":"
E-mail headers usually leak some information about the person sending the email. Most servers reveal the sender’s originating IP, but sometimes we might not want this behavior. Here’s a simple way to modify your postfix server to remove just the IP of the sender. The original idea is from https:\/\/we.riseup.net\/debian\/mail but with postfix 2.9 version […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"footnotes":""},"categories":[5,3,8],"tags":[519,33,561,244,427,497,563,562],"class_list":["post-1743","post","type-post","status-publish","format-standard","hentry","category-internet","category-linux","category-networking","tag-anonymity","tag-debian","tag-headers","tag-postfix","tag-smtp","tag-squeeze","tag-submission","tag-wheezy"],"aioseo_notices":[],"views":76831,"_links":{"self":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts\/1743","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/comments?post=1743"}],"version-history":[{"count":5,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts\/1743\/revisions"}],"predecessor-version":[{"id":1748,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/posts\/1743\/revisions\/1748"}],"wp:attachment":[{"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/media?parent=1743"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/categories?post=1743"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.void.gr\/kargig\/blog\/wp-json\/wp\/v2\/tags?post=1743"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}