1

we use exim on a VPS. We host multiple domains on WP and Magento.

Recentyl I was reviewing some e-mails when I saw the following in the Received headers: my linux username, servername (not the sending domain name) and the actual version of Exim sending the email.

Received: from **USERNAME** by **VPS_SERVERNAME** with local (**EXIM VERSION**) (envelope-from <user@domain.com>) id 1a34DM-0003fW-xx for recipient@gmail.com; Sun, 29 Nov 2015 16:48:36 +0100

I made a little jump. Why is it necessary to send the username under wich the process runs. And also why is the server name not the sending domain name. And why expose the Exim version or even expose Exim? All seems like quite a security risk by giving TMI

My question: How can I change USERNAME in the Received header to the sending E-MAIL NAME (prefix or whole email) and change the VPS_SERVERNAME to the sending DOMAINNAME. Or at least change the whole to something within all E-mails RFC's a rules ... but a little more anonymous.

Received: from user by domain.com with local (Mailserver) (envelope-from <user@domain.com>) Where user is taken from email, just like domein.com.

4

1 回答 1

3

Received:您可以通过received_header_textExim 配置中的 key 来配置Exim 附加的 header 的格式。这允许您删除用户名。默认格式字符串还建议 Eximprimary_hostname为您的 VPS_SERVERNAME 字段使用该变量,该变量默认为uname()(即您的主机名),但也可以在配置中将其覆盖为您选择的 FQDN。

至于默认格式是否为TMI,Exim的格式并不稀奇。Received:标头用于诊断目的,它们通常会揭示很多关于发送网络和 MTA 软件的信息。如果通过隐蔽的安全性优于诊断,则可以隐藏详细信息,但要考虑到它只会使攻击网络变得更加困难,而且它不是一种积极的安全措施。

于 2015-11-30T07:19:56.597 回答