Ubuntu mail headers are not best practice
Matthew Garrett
mjg59 at srcf.ucam.org
Tue Jul 10 15:38:24 BST 2007
On Tue, Jun 19, 2007 at 09:02:01AM -0700, Sherman Boyd wrote:
> The default postfix configuration sets the mail header to something like this:
>
> 220 mx.myhostname.com ESMTP Postfix (Ubuntu)
>
> This gives anyone who connects to port 25 both the name of your SMTP
> software and your Linux distribution. There is no reason to disclose
> this information, and from a security perspective it is a best
> practice not to.
In reality, anyone can figure out which mail daemon and Linux
distribution you're running with a high degree of certainty anyway.
Hiding this information doesn't actually buy you anything and makes
debugging various issues harder.
--
Matthew Garrett | mjg59 at srcf.ucam.org
More information about the ubuntu-devel
mailing list