- Various kind of logs
- A few possible (or not) solutions
- Big brother is watching your
/var/log/; have a look to http://dev.riseup.net/privacy/.
- Mailman default configuration logs every e-mail/subscription to any list.
- Mailman does not use syslog, but writes his logs himself to
/var/log/mailman(on a Debian system at least), using the
- This is applicable to Mailman 2.1.5. At least.
Mailman default configuration logs many e-mail addresses and message IDs (which often more or less disclose the sender's e-mail address).
The SMTP-related Mailman logging format is defined by a few configuration variables, defined in
Defaults.py, and that can be overriden by values assigned in
/etc/mailman/mm_cfg.py without any patching.
Example privacy-aware values (of course, privacy-awareness depends on your context, and the following values may not suit yours) :
SMTP_LOG_EVERY_MESSAGE = ( 'smtp', 'smtp for %(#recips)d recips, completed in %(time).3f seconds') SMTP_LOG_SUCCESS = ( 'post', 'post to %(listname)s, size=%(size)d, success') SMTP_LOG_REFUSED = ( 'post', 'post to %(listname)s, size=%(size)d, %(#refused)d failures') SMTP_LOG_EACH_FAILURE = ( 'smtp-failure', 'delivery to %(recipient)s failed with code %(failcode)d: %(failmsg)s')
Bouncer.py write e-mail addresses and message IDs to this log file.
A few bits of code, such as
Deliverer.py, write at least e-mail addresses to this log file.
Deliverer.py write e-mail addresses to this log file.
MailList.py write e-mail addresses to this log file.
MailList.py write e-mail addresses and message IDs to this log file.
Dunno. Mine is empty.
These log files do not contain any privacy-sensitive data, according to our own definition of "privacy-sensitive data" :
Would take tons of energy. Too much energy.
This way, the privacy-enabled syslog-ng would be able to strip any undesired data from these log files. And optionnally write a non-stripped version to a ramdisk, if needed.
Should be feasible quite quickly and cleanly. Might even be implemented in Mailman v3 devel branch ?
Why not, he he. TODO : check that Mailman does not need to retrieve any information from these log files, and test these solutions.