基本上,我有一个可以通过 POP3 或 IMAP 访问的电子邮件帐户。我想获取所有传入的电子邮件,对其进行加密,然后将加密版本转发到我的 gmail 帐户(这样我就可以在我的手机/gmail 帐户上看到主题/通知;并可能使用密码短语解密邮件 - 尽管这最后步骤不需要最初实施)。
我可能可以编写一个 python 脚本来执行此操作,但使用适当的 Linux 工具似乎是更好的途径。我已经设置了 postfix(在卫星配置中)来发送外发邮件。
在 Linux 机器上读取 POP3/IMAP 并让它 gpg 使用我的公钥加密电子邮件的正文和附件(不是主题标头)并将其转发到我的 gmail 帐户的最简单方法是什么?
(郑重声明;我将未加密版本的电子邮件发送到我的手机是违反工作政策的(部分是为了遵守美国 HIPAA 法律);因为有人有可能故意(或无意)通过电子邮件将受保护的数据发送到我的手机。 Work 认为 GPG 是安全的。)
答案1
我刚刚看到其他回复,猜想我从未写过我实际实施的解决方案。事实证明,python imaplib 很简单,我编写了一个非常快速的脚本。除非进行一些更改(例如,匿名化我的各种用户名、电子邮件密码、工作域名称、MYGPGKEYID)。我也不只是发送加密的它;但在主题前面加上发件人的用户名,并将一些标头内容放在 GPG 之前(以防我在手机上读取它并且无法解密)。
#!/usr/bin/python
import imaplib
import email
from datetime import datetime,timedelta
import shelve
from subprocess import Popen, PIPE
def piped_call(command1, arg1_list, command2, arg2_list):
"""
if arg1_tuple = (a10, a11, a12); arg2_tuple is (a20, a21)
This executes "command1 a10 a11 a12 | command2 a20 a21 a22"
"""
if type(arg1_list) not in (list, tuple):
arg1_list = [arg1_list,]
if type(arg2_list) not in (list, tuple):
arg2_list = [arg2_list,]
p1 = Popen([command1,]+list(arg1_list), stdout=PIPE)
p2 = Popen([command2,]+list(arg2_list), stdin=p1.stdout, stdout=PIPE)
p1.stdout.close()
return p2.communicate()[0]
shlf = shelve.open('/home/USERNAME/mail/mail.shlf')
# This shelf (a persistent python dictionary written to file) has as its key
# the IMAP message ids of all emails that have been processed by this script.
# Every time the script runs, I fetch all emails from the current day
# (except from midnight to 1am, where I fetch all emails since yesterday)
# and then send all emails that haven't been sent previously
# by checking message ids against the python shelf.
M = imaplib.IMAP4_SSL(host='imap.WORKDOMAINNAME.com', port=993)
M.login('EMAILUSERNAME', 'EMAILPASSWORD')
M.select()
dt = datetime.now() - timedelta(0,5*60*60)
# Only search for messages since the day of an hour earlier.
# This way messages from yesterday don't get lost at midnight; as well as limiting the number of messages to process through to just todays.
typ, uid_data = M.uid('search', None, '(SINCE %s)' % dt.strftime('%d-%b-%Y'))
for num in uid_data[0].split():
typ, data = M.uid('fetch', num, '(RFC822)')
e = email.message_from_string(data[0][1])
print 'Message %s\n%s\n' % (num, e['subject'])
if num not in shlf:
sender_email = e['return-path']
for s in ('<', '>', '@WORKDOMAINNAME.com'):
sender_email = sender_email.replace(s,'')
subject = "%s: %s" % (sender_email, e['Subject'])
body = ("From: %s\n"
"To: %s\n"
"Cc: %s\n"
"Subject: %s\n\n" % (e['From'], e['To'], e['Cc'], e['subject']))
payload = e.get_payload()
if type(payload) in (list, tuple):
payload = str(payload[0])
else:
payload = str(payload)
encrypted_payload = piped_call('echo', (payload,),
'gpg', ('-e', '-a', '-r', 'MYGPGKEYID'))
body += encrypted_payload
piped_call('echo', (body,),
'mail', ['[email protected]', '-s', subject])
shlf[num] = datetime.now()
M.close()
M.logout()
然后,我将以下几行添加到我的 crontab 中(上面的脚本在名为 mail 的目录中名为 mail.py),因此它将在工作日的正常时间(周一至周五晚上 8 点至 7 点)每 5 分钟运行一次,而在其他时间则运行频率较低。 (crontab -e)
# Every 5 minutes, M-F from 8am - 7pm.
*/5 8-19 * * 1-5 cd /home/USERNAME/mail && ./mail.py >> /home/USERNAME/mail/mail.log 2>&1
# Every 30 minutes, Sat&Sun from 8am-7pm
0,30 8-19 * * 6,7 cd /home/USERNAME/mail && ./mail.py >> /home/USERNAME/mail/mail.log 2>&1
# Every 30 minutes, M-F 8pm-2am; (no emails 2am-8am)
0,30 0-2,20-23 * * 1-5 cd /home/USERNAME/mail && ./mail.py >> /home/USERNAME/mail/mail.log 2>&1
# Every 60 minutes, Sat&Sun hours 8pm-2am; (no emails 2am-8am)
0 0-2,20-23 * * 6-7 cd /home/USERNAME/mail && ./mail.py >> /home/USERNAME/mail/mail.log 2>&1
答案2
答案3
我也需要转发加密的 root 邮件,并在这里总结了我的发现:http://www-public.it-sudparis.eu/~berger_o/weblog/2006/01/20/secure-forwarding-of-roots-mail-through-gpg/
也许这也能解决您的需求。