Email Routing

We are trying to set up a centralized PGP Server at an organization,
that encrypts all the outgoing mails. Our application is supposed to be
running at a gateway where all outgoing mails from the organization
will be routed to. At the gateway, the mail should be received by the
application, the necessary encryption should be performed and the
encrypted mail should be forwarded to the intended recipient.

As of now, we are able to recieve the outgoing mails, extract the
contents - like attachment, body of the mail - encrypt them and build a
new email, which is sent to the intended recipient. Here, we are
literally sending a new email from the gateway to the recipient instead
of just forwarding the orginal mail with its contents modified. As in,
to send the newly constructed mail, we are made to log into to a
separate account, and send the mail on behalf of the original sender.
In this case, the recipient sees the mail as coming from our ID,
instead of the original sender's ID.

However, we want the recipient to see the mail as coming from the
sender himself. Thus, we understand that we just need to forward the
new mail along its original path. I believe our requirement is similar
to how a centralized gateway adds a footer to all outgoing mails from
an organization. Kindly let me know how this is done.

Thanks.

Shiv.

Re: Email Routing

This is a MIME GnuPG-signed message. If you see this text, it means that
your E-mail or Usenet software does not support MIME signed messages.
The Internet standard for MIME PGP messages, RFC 2015, was published in 1996.
To open this message correctly you will need to install E-mail or Usenet
software that supports modern Internet standards.

--=_mimegpg-commodore.email-scan.com-21023-1141646203-0003
Content-Type: text/plain; format=flowed; charset="US-ASCII"
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

sganapathy85@gmail.com writes:

> However, we want the recipient to see the mail as coming from the
> sender himself. Thus, we understand that we just need to forward the
> new mail along its original path. I believe our requirement is similar
> to how a centralized gateway adds a footer to all outgoing mails from
> an organization. Kindly let me know how this is done.

It's done by hiring a programmer to write the custom code that's unique for
your requirements.



--=_mimegpg-commodore.email-scan.com-21023-1141646203-0003
Content-Type: application/pgp-signature
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (GNU/Linux)

iD8DBQBEDCN7x9p3GYHlUOIRAogrAJ9HXi6IzMfShvKtA4JugjkjdH/BHACZ AYbC
24+YFxhtL1zCJ568TK3ji60=
=oGLf
-----END PGP SIGNATURE-----

--=_mimegpg-commodore.email-scan.com-21023-1141646203-0003--

Re: Email Routing

sganapathy85@gmail.com writes:

> We are trying to set up a centralized PGP Server at an organization,
> that encrypts all the outgoing mails. Our application is supposed to be
> running at a gateway where all outgoing mails from the organization
> will be routed to. At the gateway, the mail should be received by the
> application, the necessary encryption should be performed and the
> encrypted mail should be forwarded to the intended recipient.
>
> As of now, we are able to recieve the outgoing mails, extract the
> contents - like attachment, body of the mail - encrypt them and build a
> new email, which is sent to the intended recipient. Here, we are
> literally sending a new email from the gateway to the recipient instead
> of just forwarding the orginal mail with its contents modified. As in,
> to send the newly constructed mail, we are made to log into to a
> separate account, and send the mail on behalf of the original sender.
> In this case, the recipient sees the mail as coming from our ID,
> instead of the original sender's ID.
>
> However, we want the recipient to see the mail as coming from the
> sender himself. Thus, we understand that we just need to forward the
> new mail along its original path. I believe our requirement is similar
> to how a centralized gateway adds a footer to all outgoing mails from
> an organization. Kindly let me know how this is done.

Adapt one of the two basic methodolowgies of deploying AS/AV at gateway:
* milter (sendmail specific)
* double daemon (your custom app between incoming and outgoing daemons)

You can
* adapt perl based GPL licenced mimedefang milter
[http://www.mimedefang.org ]
*OR*
* take a look at double daemon (sandwich) approach of amavisd

I would suggest using sandwich (double daemon) approach as it would
also allow integration with non sendmail mail servers (exim/postfix).

--
[pl2en Andrew] Andrzej Adam Filip : anfi@priv.onet.pl : anfi@xl.wp.pl
http://anfi.homeunix.net/