Help with headers..

[A32]

Hi,

How do I configure Exim NOT to send my IP address when I send email from Thunderbird? My IP address should be private if I'm sending mail through a remote server.. Example:

X-Apparently-To: [email protected] via 68.142.207.169; Tue, 30 Jan 2007 19:10:40 -0800
X-YahooFilteredBulk: xxx.xxx.111.42
X-Originating-IP: [xxx.xxx.111.42]
Return-Path: <[email protected]>
Authentication-Results: mta201.mail.mud.yahoo.com from=domain.net; domainkeys=neutral (no sig)
Received: from xxx.xxx.111.42 (EHLO www.otherdomain.com) (xxx.xxx.111.42) by mta201.mail.mud.yahoo.com with SMTP; Tue, 30 Jan 2007 19:10:40 -0800
Received: from xx-xx-xx-151.bois.qwest.net ([xx.xx.xx.151] helo=[192.168.1.100]) by www.otherdomain.com with esmtpa (Exim 4.60) (envelope-from <[email protected]>) id 1HC5rj-0006gf-9f for [email protected]; Tue, 30 Jan 2007 21:10:31 -0600

My IP Address at home!:

xx-xx-xx-151.bois.qwest.net ([xx.xx.xx.151]

In other words, this one is fine:

Received: from xxx.xxx.111.42 (EHLO www.otherdomain.com) (xxx.xxx.111.42) by mta201.mail.mud.yahoo.com with SMTP; Tue, 30 Jan 2007 19:10:40 -0800

This one gives WAY too much information:

Received: from xx-xx-xx-151.bois.qwest.net ([xx.xx.xx.151] helo=[192.168.1.100]) by www.otherdomain.com with esmtpa (Exim 4.60) (envelope-from <[email protected]>) id 1HC5rj-0006gf-9f for [email protected]; Tue, 30 Jan 2007 21:10:31 -0600

I looked at a DirectAdmin forum notification email header:

Received: from 216.194.67.119 (EHLO jbmc-software.com) (216.194.67.119) by mta436.mail.mud.yahoo.com with SMTP; Sat, 27 Jan 2007 22:32:09 -0800

Received: from apache by jbmc-software.com with local (Exim 4.52) id 1HB3ck-0005hA-Da for [email protected]; Sat, 27 Jan 2007 23:34:46 -0700

That's more like what I want - privacy. Can a n00b get any help?! I have been studying Exim but I'm still very new and it might as well be Japanese.

 

[nobaloney]

It's all part of the email protocol as defined by various RFCs. Ever MTA (that's a mailserver) when it receives a piece of mail, adds a "Received:" header. When exim receives email from your qwest connection it logs it in the heaers as it's supposed to. While there may very well be a way in exim to remove or rewrite headers, that would make a server non-compliant with email protocols and Internet RFCs, so I've never bothered to check or to learn how to do it.

The reason the jbmc-software headers only include two "Received:" headers is because the email originated on the server, the server received the email from the apache user (it was sent by the forum software on the same software), and then the email was received by your server. So only two Received headers.

Jeff

 

[A32]

Okay.. But a lot of legit emails I have looked at have only 1 Recieved: in the header.

None of these headers contain the word "Exim" so I'm assuming these emails were not sent with Exim or Exim was configured in a way that would not show my private IP address. I wonder what mail server would allow me to send emails the way I would like. It's nobodys business what my IP address is because I'm not sending emails from a server at my home. I am sending emails from the IP address of my web host which I own.

Does anybody see the problem here? Let me try and equate this with a real-world example:

A business owner has a store front that he leases to do his business from. All snail mail is sent from his business address with the BUSINESS address as the return address. It does not (and should not) notify the recipient of the business owners home address. This could prove a nightmare security-wise.

Yet Exim is doing just that: Giving away private information. What Exim is doing is completely illogical and wrong.

 

[jlandes]

I don't see a problem here. Mail servers do this primarily to capture where an e-mail originated from and what servers it passed through to reach it's destination, in case an ISP or hosting provider would need to investigate an abuse issue.

 

[A32]

But I do see a problem and I don't understand why you don't. I wish I could figure out how to tell Exim not to send my private information in the headers. Does anybody know of a tutorial on this? I have googled till my fingers bled but everything I've read seems greek

I think perhaps a more "Exim" related forum would be more apropriate as it's probably out of the scope of DA stuff. While I'm on the subject, Am I mistaken or does DA use a forked version of Exim?

 

[LyricTung]

A32: If you find a way to leave it out the mail server will not be RFC compliant as has been stated. Now, I DO see a problem just like you do with the 192.168.xxx.xxx being paired with your outside IP. The likelihood of it becoming a big problem is nil unless you have a ton of ports translated to your internal IP.

I don't know if your personal box is on an internal workgroup or not but I seldom see the internal IP picked up by Exim or any other. If you have not provided a "Name" for you box you may want to try that as my server gives my machine name rather than my internal IP:

Received: from [xxx.xxx.xx.10] (helo=WOLF)
by luca.mydomain.com with esmtp (Exim 4.63)
(envelope-from <[email protected]>)
id 1H5ZJ4-000J4a-IB; Fri, 12 Jan 2007 21:11:47 -0600