|
FastMail Forum All posts relating to FastMail.FM should go here: suggestions, comments, requests for help, complaints, technical issues etc. |
|
Thread Tools |
2 Nov 2020, 03:14 PM | #1 | ||
Essential Contributor
Join Date: May 2018
Posts: 474
|
Sieve redirect privacy concern
This is just a "heads up" that if you are using a rule's "Send a copy to" which is coded as a Sieve redirect or of course you use a Sieve redirect explicitly, the redirected message contains your X-Resolved-to. (plus a number of other headers). That effectively gives away your actual FM email account address. Obviously if it's another one of your own FM addresses it doesn't matter.
FM's "Organizing your inbox" document states for Rule actions, Quote:
Quote:
Thoughts? |
||
3 Nov 2020, 12:48 AM | #2 |
Junior Member
Join Date: Jul 2016
Posts: 23
|
Interestingly FastMail strips all their own X-headers when forwarding an email via the Web UI including X-Resolved-to. I once mentioned it here in the forum.
I had raised a ticket in 12/2017 to no avail. One of the developers (quite active here in the forum) stated that retaining the X-Resolved-to header (as well as all other of FM's X-headers) is the intended behavior: "2. As noted, in the vast majority of cases people use sieve redirects to send emails to another trusted mailbox. In these cases, preserving as much information as possible is always useful (e.g. all the Received headers + any additional X— headers we add like X-Spam-score, X-Delivered-to, X-Resolve-to, etc), since it helps understand the overall mail flow and actions that occurred on the mail from start to finish." Since then, for I don't need the X-Resolved-to header, I remove it right at the beginning of my Sieve script: Code:
# Get rid of the "X-Resolved-header" if address :matches ["X-Resolved-to"] ["*"] { if not string :is "${1}" "" { set :lower "v_hbs_header_x_resolved_to" "${1}"; deleteheader "X-Resolved-to"; } } - delete x-resolved-to header - redirect copy of email - add x-resolved-to header The only drawback would be that the X-Resolved-to header would not reappear in its original place in the email source. H. |
3 Nov 2020, 04:36 AM | #3 |
Essential Contributor
Join Date: Jan 2017
Posts: 278
|
I don't see in what circumstance anyone would redirect to an address that's not trusted. This seems like a very artificial problem.
|
3 Nov 2020, 06:52 AM | #4 |
The "e" in e-mail
Join Date: May 2003
Location: mostly in Thailand
Posts: 3,090
|
Depending on the mail service used (for instance for backup email accounts) you may trust the recipient, but not want the provider of the mail service to be able to harvest your FastMail account name.
|
3 Nov 2020, 07:42 AM | #5 | |
Essential Contributor
Join Date: May 2018
Posts: 474
|
Quote:
My "disposables" overload a single alias using subdomain addressing so I cannot just delete or disable that alias. For example, x1@aliasname.aliasdomain, x2@aliasname.aliasdomain, etc. I can create any number of these quickly using a single alias set up for this purpose when some place insists on an email address. Yes, I could use new standard aliases each time. But then I have to create it and wait until it takes effect. When it comes time to no longer needing one of these email addresses I have a number of choices on how to handle it.
To do this I create a copy of the message using a redirect :copy. Since the original was sent to my alias it is being redirected back to that same alias (i.e., it's a loop but I added a unique header to detect this case). The original message is filed into a folder and the redirected copy is rejected back to the original sender, i.e., the one not to be trusted. It's not the original copy of course but the one sent by the redirect so it contains the X-Resolved-to. So this (contrived?) case is an example of using a redirect to effect a reject back to an untrusted sender. As I said it was only an experiment (a proof of concept) to see if it could be done and it does work. But that's where I discovered the X-Resolved-to was added to the redirected copy and then rejected back to the original sender. If I really wanted to do this I can keep the recipient from seeing my X-Resolved-to simply by deleting it before the redirect. As I said it was only a proof of concept. But it seemed to me that in general why should the X-Resolved-to (and a bunch of the X-Spam headers) be included by a redirect? The documentation doesn't specify any such restrictions on the redirect recipients and the UI doesn't place any restriction on it there either. I don't know, maybe you want to create a filter to redirect certain messages to friend. You still might not want them to know your actual account email address (assuming they bother to dig around in the headers). Anyway, that's how all this came up. If you want to call it an "artificial problem" I'm fine with that. ---- Update: I was constructing this reply when I noticed after I posted it that BritTim can up with another reason not have your account info in the headers. That too! Last edited by xyzzy : 3 Nov 2020 at 08:25 AM. |
|
3 Nov 2020, 08:52 AM | #6 | |
Essential Contributor
Join Date: Mar 2007
Location: UK
Posts: 270
|
Quote:
Last edited by Grhm : 3 Nov 2020 at 08:57 AM. |
|
3 Nov 2020, 10:02 AM | #7 | |
Essential Contributor
Join Date: Jan 2017
Posts: 278
|
Quote:
Sell it to a spammer? Hack you? |
|
3 Nov 2020, 11:11 AM | #8 |
Essential Contributor
Join Date: Mar 2007
Location: UK
Posts: 270
|
It's not relevant what they might do with the info.
xyzzy reports Fastmail as saying "Sieve redirect is primarily intended for forwarding on mail to another account you control." They wouldn't have said that if it doesn't matter whether I control the account or not. |
3 Nov 2020, 02:16 PM | #9 | |
Essential Contributor
Join Date: May 2018
Posts: 474
|
Quote:
If there is confirmation of the intent of the UI's Send a copy to (which currently allows you to type any email address you want in there) then so be it but I think then they at least need to document the possible implications of using that setting if you don't send to "another account you control". Part of my original ticket asked why they include these headers in the forwarded message at all. Never got an answer for that. |
|
3 Nov 2020, 04:23 PM | #10 |
Essential Contributor
Join Date: May 2018
Posts: 474
|
My ticket has been updated by a different support person, one I have dealt with before, and he says it's passed to the "team concerned". That's just what I was after. So we wait...
|
3 Nov 2020, 11:09 PM | #11 |
Essential Contributor
Join Date: Jan 2017
Posts: 278
|
I don't forward from Fastmail, but I do make use of upstream headers, they can be very useful.
You're talking about removing a feature that's useful to some people using redirect in the normal way. Anyone who cares can remove the headers with sieve, or simply get a life. So far I haven't heard a good reason why it's even a problem. I certainly don't think it's worth documenting. This kind of nonsense is why kettles now come with 10 page manuals. |
4 Nov 2020, 08:43 AM | #12 |
Essential Contributor
Join Date: Mar 2007
Location: UK
Posts: 270
|
|
4 Nov 2020, 07:03 PM | #13 | |
Essential Contributor
Join Date: Dec 2017
Location: Scotland
Posts: 484
|
Quote:
And, yes, of course those are useful, showing the route emails took to get to you, and whose systems they passed through quickly and whose they were delayed on. |
|
5 Nov 2020, 09:54 PM | #14 | ||
Essential Contributor
Join Date: Jan 2017
Posts: 278
|
Quote:
Quote:
They can also be useful for general filtering, for example if you are forwarding two accounts to the same destination, X-Resolved-to tells you which account an email came through. |
||
12 Nov 2020, 05:36 AM | #15 |
Essential Contributor
Join Date: May 2018
Posts: 474
|
Finally got a update on my ticket. They are not going to change it but they are considering documenting it. End of story.
|
Thread Tools | |
|
|