REDACT(1)

redact - an obfuscation utility  

redact (option [option-arg]) ...  

redact can encode or decode strings. It is NOT secure, as it uses an easily breakable algorithm. Yet, it provides a consistent way to obfuscate some tokens without losing the possibility to retrieve their original values. The items that this tool is meant to obfuscate, such as authenticated user-id's, may be considered correct, even de rigueur, to divulge. However, they can be abused by unethical people. For example, knowing the user id may aid password cracking.

The core function of this program is statically linked inside the zdkimfilter executable, and dynamically linked with libnettle.  

-f config-filename

Specify an alternative configuration file. Only the redact_received_auth configuration option is read from there.

--password password

Use this password instead of the one in the configuration file.

--encode clearstring

Produce an obfuscated version of clearstring.

--decode obfuscated

Retrieve the clear string that this obfuscated token was derived from.

--help

Display usage and exit.

--version

Display package version string and exit.

 

/local/courier/etc/path/filters/zdkimfilter.conf

Default configuration file.

 

Alessandro Vesely <vesely@tana.it>  

zdkimfilter.conf(5)

Explains configuration options, including redact_received_auth.

RFC 6590

Redaction of potentially sensitive data from mail abuse reports.

Nettle

Nettle - a low-level cryptographic library www.lysator.liu.se/~nisse/nettle/