From 1f99fcdfdbe73be25c7a5ea80853bbc4618d4f76 Mon Sep 17 00:00:00 2001
From: intrigeri <intrigeri@boum.org>
Date: Sat, 5 Mar 2011 04:55:18 +0100
Subject: Support hiding the originating IP in email relayed for an
 authenticated SASL client.

Untested as I've no Puppet-managed relaying email server yet.

Reference: https://we.riseup.net/debian/anonymizing-postfix
---
 README | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'README')

diff --git a/README b/README
index 7d74ea9..4633578 100644
--- a/README
+++ b/README
@@ -7,6 +7,11 @@ A couple of classes will preconfigure postfix for common needs.
 Config
 ------
 - set $postfix_use_amavisd="yes" to include postfix::amavis
+- set $postfix_anon_sasl="yes" to hide the originating IP in email
+  relayed for an authenticated SASL client; this needs Postfix
+  2.3 or later to work; beware! Postfix logs the header replacement
+  has been done, which means that you are storing this information,
+  unless you are anonymizing your logs.
 - set $postfix_manage_header_checks="yes" to manage header checks (see
   postfix::header_checks for details)
 - set $postfix_manage_tls_policy="yes" to manage TLS policy (see
-- 
cgit v1.2.3