Bug#276124: exim4-daemon-heavy: [30_exim4-config_remote_smtp_smarthost] add sa-exim support
Jari Aalto
Jari Aalto <jari.aalto@cante.net>, 276124-maintonly@bugs.debian.org
Sun, 06 Feb 2005 18:22:26 +0200
| tags #276124 wishlist
| thanks
|
| On Tue, Oct 12, 2004 at 09:12:55AM +0300, Jari Aalto wrote:
| > If possible, it would be good if file
| > /etc/exim4/conf.d/transport/30_exim4-config_remote_smtp_smarthost included
| > support for Exim out of the box. Here is suggested improvement:
| >
| > remote_smtp_smarthost:
| > debug_print = "T: remote_smtp_smarthost for $local_part@$domain"
| > driver = smtp
| > hosts_try_auth = ${if exists {CONFDIR/passwd.client}{DCsmarthost}{}}
| > tls_tempfail_tryclear = false
| > DEBCONFheaders_rewriteDEBCONF
| > DEBCONFreturn_pathDEBCONF
| > .ifdef SA_EXIM_SMTP_HEADERS_REMOVE
| > headers_remove = X-SA-Do-Not-Run \
| > : X-SA-Exim-Scanned \
| > : X-SA-Exim-Rcpt-To \
| > : X-SA-Exim-Mail-From \
| > : X-SA-Exim-Version \
| > : X-SA-Exim-Connect-IP
| > .endif
|
| Wouldn't that remove SA-Exim-Headers from outgoing e-mail? Why is that
| globally desireable?
Yes. SA-EXIM add sensitive information (because it's being run inside
the site), but this information should not leak outside. BEsides, the
receiving site may also run SA-EXIM, so it has no use for this
information.
This suggestion was for messages sent to smarhosts.
Jari