Re: [Exim] SMTP Auth doesn't prevent users from sending as o…

Página Principal
Apagar esta mensagem
Responder a esta mensagem
Autor: Barry Pederson
Data:  
Para: Fred Viles
CC: exim-users
Assunto: Re: [Exim] SMTP Auth doesn't prevent users from sending as other users
Fred Viles wrote:

> Depending on what you want to accomplish, another option is to simply
> add an X- header to the message with the authenticated ID. IOW,
> don't try to prevent spoofing, which can have legitimate reasons,
> just make the real sender ID visible so abuse can be dealt with.


You can also just customize the Received: header to include that info.
I've been trying:

-------
received_header_text = Received: \
       ${if def:sender_rcvhost {from $sender_rcvhost\n\t}\
       {${if def:sender_ident {from $sender_ident }}\
       ${if def:sender_helo_name {(helo=$sender_helo_name)\n\t}}}}\
       by $primary_hostname \
       ${if def:received_protocol {with $received_protocol}} \
       ${if def:authenticated_id  {(userid:$authenticated_id)}}\
       ${if def:tls_cipher {($tls_cipher)\n\t}}\
       (Exim $version_number)\n\t\
       id $message_id\
       ${if def:received_for {\n\tfor $received_for}}
---------


So you end up having something like

    .... with asmtp (userid:barryp)(TLSv1:RC4-SHA:128) ....


included in that header entry.

    Barry