XF 2.0 Server IP address is getting leaked when using SMTP + Mailgun

orthopug

orthopug

Member
I just bought Xenforo and was hoping to use Mailgun to send out emails. In the email address setting, I set up my SMTP username and password with Mailgun (TLS encryption). The email successfully sends out, but when I view the full email, it displays the server IP address.

Received: from domain.com (XX-XX-XX-XX.static.hosting-provider.com [XX.XX.XX.XX])
by mxa.mailgun.org with ESMTP id 5ea88d94.7fea854e20c0-smtp-out-n01
Click to expand...

I've tried a few different ports but the result is the same. Is there any way to fix this? I don't want to open my site to DDOS attacks.
 
Last edited:
Sort by date Sort by votes
I'd say that's how SMTP does work. Unless Mailgun does provide options to hide this header (it's generated by their MTA) there is no way to hide your IP except using some kind of tunnel (Socks, VPN, etc.)
 
Upvote 0 Downvote
orthopug said:
I don't want to open my site to DDOS attacks.
Click to expand...
I don't understand this and want to double check what you are thinking. I get you want to avoid a ddos attack, but everybody already knows your website ip address just by knowing the URL. How does the smtp + mailgun leak increase your vulnerability? What am I missing?
 
Upvote 0 Downvote
Monkeytime said:
I don't understand this and want to double check what you are thinking. I get you want to avoid a ddos attack, but everybody already knows your website ip address just by knowing the URL. How does the smtp + mailgun leak increase your vulnerability? What am I missing?
Click to expand...
But they don't know the server IP address. That is the address they need to launch a DDOS attack. The website IP address is from Cloudflare, which cannot be attacked.
 
Upvote 0 Downvote
You must log in or register to reply here.
Back
Top Bottom