brian @
imcon .
ilinx .
com mumbled something vague about:
>
> from the quill of mshaver @
schoolnet .
carleton .
ca (Mike Shaver)
> > Rob Sansom mumbled something vague about:
> > > I've been having problems with one of my internal hosts name appearing in
> > > mail headers. See below:
> >
> > I'd say that it's a tricky thing, since in theory, all machines that process
> > a message are *supposed* to add the Received: header.
> > I suppose you could hack the offending sendmail to not add the Received
> > line, but I'd keep a "standard" copy around in case something breaks.
> Is it really tricky?? I've yet to dig in, but I've been meaning to make a
> "firewall sendmail.cf" file that strips out all the Received: headers and puts
> only the one from the firewall in, and rewrite any headers which get built as
> the mail passes from inside machines to the firewall. Will I have a hard time
> doing this?? I'm not so sure I will.
Oh, you could easily write a perl script to do it, but that wasn't my
point... the standards that the Internet lives and dies by specify that all
machines processing mail add their little stamp to it, to aid in mail
debugging.
I'm not so certain it's a good idea for firewalls to rewrite the headers
wholesale, and lose that valuable debugging information. I think a better
solution is the use of fake names for mail headers, which are totally
unrelated to the DNS names (internal and external).
Mike
|
|
