Gandi.net Groups

Hosting General: SSL secure email

You should be logged in to post new messages. Create an account.

Sorry this is not concerning hosting... we're using Gandi for email, and
IMAP with SSL. However, when sending an Email, why is it necessary to
show our own client IP number in the headers, when even Yahoo do not do
that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user in
any abuse case. The IP should simply trace back to Gandi only imho.
The same should apply when using the web interface hosted at Gandi.
Please can we have an answer on this. We have many domains on Gandi and
have been using your services for many years.
WM wrote:
Sorry this is not concerning hosting... we're using Gandi for email,
and
IMAP with SSL. However, when sending an Email, why is it necessary to
show our own client IP number in the headers, when even Yahoo do not
do
that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in
any abuse case. The IP should simply trace back to Gandi only imho.
The same should apply when using the web interface hosted at Gandi.
Please can we have an answer on this. We have many domains on Gandi and
have been using your services for many years.
WM wrote:
WM wrote:
Sorry this is not concerning hosting... we're using Gandi for email,
and
IMAP with SSL. However, when sending an Email, why is it necessary to
show our own client IP number in the headers, when even Yahoo do not
do
that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in
any abuse case. The IP should simply trace back to Gandi only imho.
The same should apply when using the web interface hosted at Gandi.
Please can we have an answer on this. We have many domains on Gandi
and
have been using your services for many years.
WM wrote:
WM wrote:
WM wrote:

Sorry this is not concerning hosting... we're using Gandi for email,
and
IMAP with SSL. However, when sending an Email, why is it necessary to
show our own client IP number in the headers, when even Yahoo do not
do
that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in
any abuse case. The IP should simply trace back to Gandi only imho.
The same should apply when using the web interface hosted at Gandi.
Please can we have an answer on this. We have many domains on Gandi
and
have been using your services for many years.
We're using Gandi for email, and IMAP with SSL.
However, when sending an Email, why is it necessary for Gandi to
show our own client IP number in the headers, when even Yahoo do not
do that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in any abuse case. The IP should simply trace back to Gandi only.
The same should apply when using the web interface hosted at Gandi.

lease can we have an answer on this. We have many domains on Gandi
nd ave been using your services for many years.
any reply please

WM wrote:
We're using Gandi for email, and IMAP with SSL.
However, when sending an Email, why is it necessary for Gandi to
show our own client IP number in the headers, when even Yahoo do not
do that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in any abuse case. The IP should simply trace back to Gandi only.
The same should apply when using the web interface hosted at Gandi.

lease can we have an answer on this. We have many domains on Gandi
nd ave been using your services for many years.
any reply please
WM wrote:
We're using Gandi for email, and IMAP with SSL.
However, when sending an Email, why is it necessary for Gandi to
show our own client IP number in the headers, when even Yahoo do not
do that? Can this be fixed to assure more privacy, since the login is
authenticated and so Gandi will know clearly the identity of the user
in any abuse case. The IP should simply trace back to Gandi only.
The same should apply when using the web interface hosted at Gandi.

lease can we have an answer on this. We have many domains on Gandi
nd ave been using your services for many years.
You'll probably be more likely to get some kind of answer if you ask
that question in the right category and that would be Gandi Mail (
http://groups.gandi.net/en/category/mail-e... ). However, I kind of doubt
that Gandi would be willing to provide a way to forge mail headers like
you are suggesting.
Thank you Teemu. This is not about forging Email headers - otherwise
you're accusing other reputable email services about doing that! It's a
privacy issue. The point is that the IP number of our DOMAIN at Gandi
should be showing there - this very clearly identifies us - but NOT the
IP address of the computer one is logging in from outside. Have a look
at any Yahoo or is it Gmail headers and you will see they do not do it.

Teemu Toivola wrote:
You'll probably be more likely to get some kind of answer if you ask
that question in the right category and that would be Gandi Mail (
http://groups.gandi.net/en/category/mail-e... ). However, I kind of
doubt
that Gandi would be willing to provide a way to forge mail headers
like
you are suggesting.
Gmail does include your IP address, at least if mail is sent via smtp. 
A test mail I just sent included the header:

Received: from ?192.168.2.4? ( [82.45.207.20])
        by mx.google.com with ESMTPS id
y34sm17595312iky.6.2008.03.17.16.20.54
        (version=TLSv1/SSLv3 cipher=OTHER);
        Mon, 17 Mar 2008 16:20:54 -0700 (PDT)

82.45.207.20 is my public IP, and 192.168.2.4 is my internal IP.  So I
don't think gandi are doing anything unusual here.




--M.

On Mar, 17 2008 16:59 CET, WM wrote:
Thank you Teemu. This is not about forging Email headers - otherwise
you're accusing other reputable email services about doing that! It's
a
privacy issue. The point is that the IP number of our DOMAIN at Gandi
should be showing there - this very clearly identifies us - but NOT
the
IP address of the computer one is logging in from outside. Have a look
at any Yahoo or is it Gmail headers and you will see they do not do
it.

Teemu Toivola wrote:
You'll probably be more likely to get some kind of answer if you ask
that question in the right category and that would be Gandi Mail (
http://groups.gandi.net/en/category/mail-e... ). However, I kind of
doubt
that Gandi would be willing to provide a way to forge mail headers
like
you are suggesting.
Right so it is Yahoo then that don't. It is not that Gandi are doing
anything unusual, it is that Gandi should be providing for those who
have a registered domain name and being hosted and/or DNS services, an
IP traced back to Gandi (as per Yahoo - I mean look: Yahoo anyone can
sign up to for FREE and without any real authentication/verification
compared to that required when registering domains with Gandi: a credit
card is used, a correct address and contact details need to be given, or
you lose your domain. So if my domain is @xyz.com and it is by Gandi, my
IP address should start at Gandi (and the original be suppressed). This
is an acceptable privacy issue, if Yahoo (and must be others) do it, why
not Gandi. If I am logged in on SSL to my Gandi registered domain Email,
why would gandi need to show the general public the terminal i am using
- that is on Gandi's record if need be. CryptoHeaven too, if I use their
system, you will only see the Cryptoheaven IP, no matter where I am. CH
know the IP and if I abuse, I will lose my account. Why should we be
forced to set up our own mail servers at Gandi and/or go via a VPN, when
Gandi can already do that. Yes, yes, protocols, but they are not cast in
stone. Otherwise Yahoo wouldn't do it. And for Gmail yes maybe the WEB
version also does not give the IP. Same imho should be at Gandi at least
on web version and SSL accessed/authenticated version.

Michael Stillwell wrote:
Gmail does include your IP address, at least if mail is sent via smtp.

A test mail I just sent included the header:

Received: from ?192.168.2.4? ( [82.45.207.20])
        by mx.google.com with ESMTPS id
y34sm17595312iky.6.2008.03.17.16.20.54
        (version=TLSv1/SSLv3 cipher=OTHER);
        Mon, 17 Mar 2008 16:20:54 -0700 (PDT)

82.45.207.20 is my public IP, and 192.168.2.4 is my internal IP.  So I
don't think gandi are doing anything unusual here.




--M.

On Mar, 17 2008 16:59 CET, WM wrote:
Thank you Teemu. This is not about forging Email headers - otherwise
you're accusing other reputable email services about doing that! It's
a
privacy issue. The point is that the IP number of our DOMAIN at Gandi
should be showing there - this very clearly identifies us - but NOT
the
IP address of the computer one is logging in from outside. Have a look
at any Yahoo or is it Gmail headers and you will see they do not do
it.

Teemu Toivola wrote:
You'll probably be more likely to get some kind of answer if you ask
that question in the right category and that would be Gandi Mail (
http://groups.gandi.net/en/category/mail-e... ). However, I kind of
doubt
that Gandi would be willing to provide a way to forge mail headers
like
you are suggesting.
Okay, I just tried Yahoo and one of the headers reads:

Received: from [82.45.207.20] by web30108.mail.mud.yahoo.com via HTTP;
Wed, 09 Apr 2008 21:49:34 PDT

82.45.207.20 is my external IP address.  So I don't know why you're not
seeing your IP address in the emails you send via Yahoo.  This is via a
free Yahoo webmail account http://mail.yahoo.com/.



--M.

On Mar, 18 2008 17:12 CET, WM wrote:
Right so it is Yahoo then that don't. It is not that Gandi are doing
anything unusual, it is that Gandi should be providing for those who
have a registered domain name and being hosted and/or DNS services, an
IP traced back to Gandi (as per Yahoo - I mean look: Yahoo anyone can
sign up to for FREE and without any real authentication/verification
compared to that required when registering domains with Gandi: a
credit
card is used, a correct address and contact details need to be given,
or
you lose your domain. So if my domain is @xyz.com and it is by Gandi,
my
IP address should start at Gandi (and the original be suppressed).
This
is an acceptable privacy issue, if Yahoo (and must be others) do it,
why
not Gandi. If I am logged in on SSL to my Gandi registered domain
Email,
why would gandi need to show the general public the terminal i am
using
- that is on Gandi's record if need be. CryptoHeaven too, if I use
their
system, you will only see the Cryptoheaven IP, no matter where I am.
CH
know the IP and if I abuse, I will lose my account. Why should we be
forced to set up our own mail servers at Gandi and/or go via a VPN,
when
Gandi can already do that. Yes, yes, protocols, but they are not cast
in
stone. Otherwise Yahoo wouldn't do it. And for Gmail yes maybe the WEB
version also does not give the IP. Same imho should be at Gandi at
least
on web version and SSL accessed/authenticated version.

Michael Stillwell wrote:
Gmail does include your IP address, at least if mail is sent via
smtp.

A test mail I just sent included the header:

Received: from ?192.168.2.4? ( [82.45.207.20])
        by mx.google.com with ESMTPS id
y34sm17595312iky.6.2008.03.17.16.20.54
        (version=TLSv1/SSLv3 cipher=OTHER);
        Mon, 17 Mar 2008 16:20:54 -0700 (PDT)

82.45.207.20 is my public IP, and 192.168.2.4 is my internal IP.  So
I
don't think gandi are doing anything unusual here.