From 1f99fcdfdbe73be25c7a5ea80853bbc4618d4f76 Mon Sep 17 00:00:00 2001
From: intrigeri <intrigeri@boum.org>
Date: Sat, 5 Mar 2011 04:55:18 +0100
Subject: Support hiding the originating IP in email relayed for an
 authenticated SASL client.

Untested as I've no Puppet-managed relaying email server yet.

Reference: https://we.riseup.net/debian/anonymizing-postfix
---
 templates/anonsasl_header_checks.erb | 2 ++
 1 file changed, 2 insertions(+)
 create mode 100644 templates/anonsasl_header_checks.erb

(limited to 'templates')

diff --git a/templates/anonsasl_header_checks.erb b/templates/anonsasl_header_checks.erb
new file mode 100644
index 0000000..bca5914
--- /dev/null
+++ b/templates/anonsasl_header_checks.erb
@@ -0,0 +1,2 @@
+/^Received: from (.* \([-._[:alnum:]]+ \[[.[:digit:]]{7,15}\]\)).*?([[:space:]]+).*\(Authenticated sender: ([^)]+)\).*by (<%= fqdn.gsub(/\./, '\.') %>) \(([^)]+)\) with (E?SMTPS?A?) id ([A-F[:digit:]]+).*/
+  REPLACE Received: from [127.0.0.1] (localhost [127.0.0.1])$2(Authenticated sender: $3)${2}with $6 id $7   
-- 
cgit v1.2.3