Ok, here's the problem:
The "Powers That BE" decided that the company could be held liable
if an employee emailed confidential information to the wrong people.
So, an our new email policy states that all email messages are company
records and employees have no expectation of privacy with regard to
Now, I've been given the task of archiving all email entering, or
leaving, our domain. I doubt I'm the first guy to ever work for a
paranoid company, so would anyone who has already done this care to
point me in the right direction?
Right now I have two ideas:
1) Setup rule sets like check_mail and check_rcpt which somehow
blind carbon-copy an address if the sender or recipient is
not from our domain. This would be nice, but I don't think it's
2) Use two different sendmail daemons on the Internet mail
relay. The first would have a delivery agent which bcc's
all messages to an internal "dummy" account and then queue'd
the mail for a separate sendmail (w/ the "real" .cf) to
We're running sendmail 8.8.7, but changing that is no big deal.
Any and all comments would be greatly appreciated.
Jason D. Kelleher Systems Administrator