From 8b04cfa06b53fef358923212f8aa423cf994816a Mon Sep 17 00:00:00 2001
From: revsuine <pid1@revsuine.xyz>
Date: Tue, 26 Nov 2024 15:45:14 +0000
Subject: [PATCH] postfix header checks

---
 .../index.md                                  | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/content/blog/mail_server_alpine_postfix_dovecot_tutorial/index.md b/content/blog/mail_server_alpine_postfix_dovecot_tutorial/index.md
index a108d9f..24de61c 100644
--- a/content/blog/mail_server_alpine_postfix_dovecot_tutorial/index.md
+++ b/content/blog/mail_server_alpine_postfix_dovecot_tutorial/index.md
@@ -386,6 +386,25 @@ mailbox_size_limit = 0
 
 By default, `mailbox_size_limit` is `51200000`. This number is in bytes. You can similarly set a `message_size_limit`.
 
+Let's hide some sensitive info that tends to get attached to email headers by clients. Edit
+`/etc/postfix/header_checks`, or create it if it doesn't already exist, and add the following lines:
+
+```plaintext
+/^Received: .*/            IGNORE
+/^User-Agent: .*/          IGNORE
+/^X-Originating-IP: .*/    IGNORE
+/^X-Mailer: .*/            IGNORE
+/^Mime-Version: .*/        IGNORE
+```
+
+Now add the following to your `/etc/postfix/main.cf`:
+
+```conf
+header_checks = regexp:/etc/postfix/header_checks
+smtp_header_checks = $header_checks
+mime_header_checks = $header_checks
+```
+
 Finally, here are some various hardening settings you can add to your `/etc/postfix/main.conf`:
 
 ```conf