remove senders X-Leap-* headers
An attacker could add X-Leap-Signature or X-Leap-Provenance to trick the client to believe that the email is signed or not encrypted.
(from redmine: created on 2015-09-08, closed on 2016-08-05, relates #5993 (closed))
Hello! We are running our annual fundraising. Please consider making a donation if you value this freely available service or want to support people around the world working towards liberatory social change - https://riseup.net/donate
An attacker could add X-Leap-Signature or X-Leap-Provenance to trick the client to believe that the email is signed or not encrypted.
(from redmine: created on 2015-09-08, closed on 2016-08-05, relates #5993 (closed))