From: Wietse Venema <wietse@porcupine.org>
Date: Wed, 9 Mar 2005 05:00:00 +0000 (-0500)
Subject: postfix-2.3-20050309
X-Git-Tag: v2.3-RC1~95
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=e52a07aa6535ae6a4244cc81264ebab2143202af;p=thirdparty%2Fpostfix.git

postfix-2.3-20050309
---

diff --git a/postfix/README_FILES/ADDRESS_REWRITING_README b/postfix/README_FILES/ADDRESS_REWRITING_README
index 8d4936e91..f433ec3a5 100644
--- a/postfix/README_FILES/ADDRESS_REWRITING_README
+++ b/postfix/README_FILES/ADDRESS_REWRITING_README
@@ -84,17 +84,19 @@ Postfix versions 2.2 give you the option to either not rewrite message headers
 from remote SMTP clients at all, or to label incomplete addresses in such
 message headers as invalid. Here is how it works:
 
-  * Postfix always rewrites message header addresses from local SMTP clients,
-    and from the Postfix sendmail command. The local_header_rewrite_clients
-    parameter controls what SMTP clients Postfix considers local (by default,
-    only local network interface addresses).
+  * Postfix always rewrites message headers from local SMTP clients and from
+    the Postfix sendmail command, and appends its own domain to incomplete
+    addresses. The local_header_rewrite_clients parameter controls what SMTP
+    clients Postfix considers local (by default, only local network interface
+    addresses).
   * Postfix never rewrites message header addresses from remote SMTP clients
     when the remote_header_rewrite_domain parameter value is empty (the default
     setting).
-  * Otherwise, Postfix appends the remote_header_rewrite_domain value to
-    incomplete message header addresses from remote SMTP clients. This feature
-    can be used to append a reserved domain such as "domain.invalid", so that
-    incomplete addresses cannot be mistaken for local addresses.
+  * Otherwise, Postfix rewrites message headers from remote SMTP clients, and
+    appends the remote_header_rewrite_domain value to incomplete addresses.
+    This feature can be used to append a reserved domain such as
+    "domain.invalid", so that incomplete addresses cannot be mistaken for local
+    addresses.
 
 PPoossttffiixx aaddddrreessss rreewwrriittiinngg oovveerrvviieeww
 
@@ -214,12 +216,6 @@ table, it first rewrites the address to the standard
 rewrite(8) daemon. The purpose of rewriting to standard form is to reduce the
 number of entries needed in lookup tables.
 
-NOTE: Postfix versions 2.2 and later rewrite message headers from remote SMTP
-clients only if the client matches the local_header_rewrite_clients parameter,
-or if the remote_header_rewrite_domain configuration parameter specifies a non-
-empty value. To get the behavior before Postfix 2.2, specify
-"local_header_rewrite_clients = static:all".
-
 The Postfix trivial-rewrite(8) daemon implements the following hard-coded
 address manipulations:
 
@@ -230,17 +226,38 @@ address manipulations:
         time. Postfix has no ability to handle route addresses, other than to
         strip off the route part.
 
+        NOTE: Postfix versions 2.2 and later rewrite message headers from
+        remote SMTP clients only if the client matches the
+        local_header_rewrite_clients parameter, or if the
+        remote_header_rewrite_domain configuration parameter specifies a non-
+        empty value. To get the behavior before Postfix 2.2, specify
+        "local_header_rewrite_clients = static:all".
+
     Rewrite "site!user" to "user@site"
         This feature is controlled by the boolean swap_bangpath parameter
         (default: yes). The purpose is to rewrite UUCP-style addresses to
         domain style. This is useful only when you receive mail via UUCP, but
         it probably does not hurt otherwise.
 
+        NOTE: Postfix versions 2.2 and later rewrite message headers from
+        remote SMTP clients only if the client matches the
+        local_header_rewrite_clients parameter, or if the
+        remote_header_rewrite_domain configuration parameter specifies a non-
+        empty value. To get the behavior before Postfix 2.2, specify
+        "local_header_rewrite_clients = static:all".
+
     Rewrite "user%domain" to "user@domain"
         This feature is controlled by the boolean allow_percent_hack parameter
         (default: yes). Typically, this is used in order to deal with
         monstrosities such as "user%domain@otherdomain".
 
+        NOTE: Postfix versions 2.2 and later rewrite message headers from
+        remote SMTP clients only if the client matches the
+        local_header_rewrite_clients parameter, or if the
+        remote_header_rewrite_domain configuration parameter specifies a non-
+        empty value. To get the behavior before Postfix 2.2, specify
+        "local_header_rewrite_clients = static:all".
+
     Rewrite "user" to "user@$myorigin"
         This feature is controlled by the boolean append_at_myorigin parameter
         (default: yes). You should never turn off this feature, because a lot
@@ -282,6 +299,13 @@ address manipulations:
         A single trailing dot is silently removed. However, an address that
         ends in multiple dots will be rejected as an invalid address.
 
+        NOTE: Postfix versions 2.2 and later rewrite message headers from
+        remote SMTP clients only if the client matches the
+        local_header_rewrite_clients parameter, or if the
+        remote_header_rewrite_domain configuration parameter specifies a non-
+        empty value. To get the behavior before Postfix 2.2, specify
+        "local_header_rewrite_clients = static:all".
+
 CCaannoonniiccaall aaddddrreessss mmaappppiinngg
 
 The cleanup(8) daemon uses the canonical(5) tables to rewrite addresses in
diff --git a/postfix/README_FILES/STANDARD_CONFIGURATION_README b/postfix/README_FILES/STANDARD_CONFIGURATION_README
index b400191a5..f0161c115 100644
--- a/postfix/README_FILES/STANDARD_CONFIGURATION_README
+++ b/postfix/README_FILES/STANDARD_CONFIGURATION_README
@@ -306,7 +306,7 @@ interface. In such a configuration is it is tempting to configure
 $inet_interfaces in each instance with just the corresponding interface
 address.
 
-In most cases using inet_interaces in this way will not work, because as
+In most cases, using inet_interfaces in this way will not work, because as
 documented in the $inet_interfaces reference manual, the smtp(8) delivery agent
 will also use the specified interface address as the source address for
 outbound connections and will be unable to reach hosts on "the other side" of
diff --git a/postfix/RELEASE_NOTES-2.2 b/postfix/RELEASE_NOTES-2.2
index 45ac18ed5..e7e2cd84c 100644
--- a/postfix/RELEASE_NOTES-2.2
+++ b/postfix/RELEASE_NOTES-2.2
@@ -27,10 +27,11 @@ form SQL queries, and domain filters to reduce unnecessary lookups.
 up deliveries to high-volume destinations that have some servers
 that respond, and some non-responding mail servers.
 
-- By default, message header address rewriting is now disabled for
-SMTP mail from other systems (including masquerading and canonical
-mapping).  Thus, spam from poorly written software no longer looks
-like it came from a local user.
+- By default, Postfix no longer rewrites message headers in mail
+from remote clients. This includes masquerading, canonical mapping,
+replacing "!" and "%" by "@", and appending the local domain to
+incomplete addresses.  Thus, spam from poorly written software no
+longer looks like it came from a local user.
 
 - When your machine does not have its own domain name, Postfix can
 now replace your "home network" email address by your ISP account
@@ -201,32 +202,32 @@ local machine. The syntax is described in generic(5) and a detailed
 example is in the STANDARD_CONFIGURATION_README document, the section
 titled "Postfix on hosts without a real Internet hostname".
 
-[Feature 20041023] By default, Postfix no longer appends its own
-domain to addresses in message headers from remote clients.  Thus,
-spam from poorly written software no longer looks like it came from
-a local user.
+[Feature 20041023] By default, Postfix no longer rewrites message
+headers in mail from remote clients. This includes masquerading,
+canonical mapping, replacing "!" and "%" by "@", and appending the
+local domain to incomplete addresses.  Thus, spam from poorly written
+software no longer looks like it came from a local user.
 
-Postfix either does not rewrite remote message headers at all, or
-it rewrites headers and appends the domain name that is specified
-with the remote_header_rewrite_domain parameter (like "domain.invalid").
+By default, Postfix rewrites message header addresses only when the
+client IP address matches the local machine's interface addresses,
+or when mail is submitted with the Postfix sendmail(1) command.
 
-To get the behavior of earlier Postfix versions (always append
-Postfix's own domain to incomplete addresses in message headers)
-specify:
+Postfix rewrites message headers in mail from other clients only
+when the remote_header_rewrite_domain parameter specifies a domain
+name (such as "domain.invalid"); this domain is appended to incomplete
+addresses. Rewriting also includes masquerading, canonical mapping,
+and replacing "!" and "%" by "@".
+
+To get the behavior before Postfix 2.2 (always append Postfix's own
+domain to incomplete addresses in message headers, always subject
+message headers to canonical mapping, address masquerading, and
+always replace "!" and "%" by "@") specify:
 
 /etc/postfix/main.cf:
     local_header_rewrite_clients = static:all
 
-Postfix always appends its own domain information to addresses in
-message headers from Postfix sendmail and from local SMTP clients.
-
-By default, Postfix considers an SMTP client local (and thus updates
-message header addresses with the Postfix's own domain) when the
-client IP address matches the local machine's interface addresses,
-or when mail is submitted with the Postfix sendmail(1) command.
-
-If you must rewrite headers from other clients then you can specify,
-for example,
+If you must rewrite headers in mail from specific clients then you
+can specify, for example,
 
 /etc/postfix/main.cf:
     local_header_rewrite_clients = permit_mynetworks,
@@ -249,9 +250,8 @@ header is modified.  Older Postfix versions first parse and then
 un-parse a header so that there may be subtle changes in formatting,
 such as the amount of whitespace between tokens.
 
-[Incompat 20050227] When header address rewriting is enabled, Postfix
-no longer changes header label capitalization, i.e. FROM: or CC:
-are no longer replaced by From: or Cc:.
+[Incompat 20050227] Postfix no longer changes message header labels.
+Thus, FROM: or CC: are no longer replaced by From: or Cc:.
 
 [Feature 20040827] Finer control over canonical mapping with
 canonical_classes, sender_canonical_classes and
diff --git a/postfix/conf/canonical b/postfix/conf/canonical
index 9f245bc35..6f75508c3 100644
--- a/postfix/conf/canonical
+++ b/postfix/conf/canonical
@@ -1,4 +1,4 @@
-# CANONICAL(5)                                         CANONICAL(5)
+# CANONICAL(5)                                                      CANONICAL(5)
 # 
 # NAME
 #        canonical - Postfix canonical table format
@@ -41,6 +41,14 @@
 #        Sendmail rule set S3, if you  like.   This  is  controlled
 #        with the canonical_classes parameter.
 # 
+#        NOTE: Postfix versions 2.2 and later rewrite message head-
+#        ers from remote SMTP clients only if  the  client  matches
+#        the  local_header_rewrite_clients  parameter,  or  if  the
+#        remote_header_rewrite_domain configuration parameter spec-
+#        ifies  a non-empty value. To get the behavior before Post-
+#        fix   2.2,   specify    "local_header_rewrite_clients    =
+#        static:all".
+# 
 #        Typically, one would use the canonical(5) table to replace
 #        login  names  by  Firstname.Lastname,  or  to   clean   up
 #        addresses produced by legacy mail systems.
@@ -130,8 +138,8 @@
 #        constituent parts, nor is user+foo broken up into user and
 #        foo.
 # 
-#        Patterns are applied in the  order  as  specified  in  the
-#        table,  until  a  pattern is found that matches the search
+#        Patterns are applied in the order as specified in the  ta-
+#        ble,  until  a  pattern  is  found that matches the search
 #        string.
 # 
 #        Results are the same as with indexed  file  lookups,  with
@@ -141,9 +149,9 @@
 # TCP-BASED TABLES
 #        This section describes how the table lookups  change  when
 #        lookups are directed to a TCP-based server. For a descrip-
-#        tion  of  the  TCP  client/server  lookup  protocol,   see
-#        tcp_table(5).   This  feature  is  not available up to and
-#        including Postfix version 2.2.
+#        tion of the TCP client/server lookup protocol, see tcp_ta-
+#        ble(5).  This feature is not available up to and including
+#        Postfix version 2.2.
 # 
 #        Each lookup operation uses the entire address once.  Thus,
 #        user@domain  mail  addresses  are not broken up into their
@@ -189,6 +197,15 @@
 #               receives mail on.  You need to stop and start Post-
 #               fix when this parameter changes.
 # 
+#        local_header_rewrite_clients
+#               Rewrite message header addresses in mail from these
+#               clients and update incomplete  addresses  with  the
+#               domain name in $myorigin or $mydomain; either don't
+#               rewrite message headers from other clients at  all,
+#               or  rewrite  message  headers and update incomplete
+#               addresses  with  the  domain   specified   in   the
+#               remote_header_rewrite_domain parameter.
+# 
 #        proxy_interfaces
 #               Other interfaces that this machine receives mail on
 #               by way of a proxy agent or network address transla-
@@ -218,6 +235,12 @@
 #               Give special treatment to owner-xxx and xxx-request
 #               addresses.
 # 
+#        remote_header_rewrite_domain
+#               Don't rewrite message headers from  remote  clients
+#               at all when this parameter is empty; otherwise, re-
+#               write message  headers  and  append  the  specified
+#               domain name to incomplete addresses.
+# 
 # SEE ALSO
 #        cleanup(8), canonicalize and enqueue mail
 #        postmap(1), Postfix lookup table manager
@@ -225,13 +248,13 @@
 #        virtual(5), virtual aliasing
 # 
 # README FILES
-#        Use "postconf readme_directory" or  "postconf  html_direc-
+#        Use  "postconf  readme_directory" or "postconf html_direc-
 #        tory" to locate this information.
 #        DATABASE_README, Postfix lookup table overview
 #        ADDRESS_REWRITING_README, address rewriting guide
 # 
 # LICENSE
-#        The  Secure  Mailer  license must be distributed with this
+#        The Secure Mailer license must be  distributed  with  this
 #        software.
 # 
 # AUTHOR(S)
@@ -240,4 +263,4 @@
 #        P.O. Box 704
 #        Yorktown Heights, NY 10598, USA
 # 
-#                                                      CANONICAL(5)
+#                                                                   CANONICAL(5)
diff --git a/postfix/html/ADDRESS_REWRITING_README.html b/postfix/html/ADDRESS_REWRITING_README.html
index 9a7939aa9..226d937be 100644
--- a/postfix/html/ADDRESS_REWRITING_README.html
+++ b/postfix/html/ADDRESS_REWRITING_README.html
@@ -153,21 +153,21 @@ how it works:  </p>
 
 <ul>
 
-<li> Postfix always rewrites message header addresses from local
-SMTP clients, and from the Postfix sendmail command.  The
-<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter controls what SMTP clients
-Postfix considers local (by default, only local network interface
-addresses).
+<li> Postfix always rewrites message headers from local SMTP clients
+and from the Postfix sendmail command, and appends its own domain
+to incomplete addresses.  The <a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter
+controls what SMTP clients Postfix considers local (by default,
+only local network interface addresses).
 
 <li> Postfix never rewrites message header addresses from remote
 SMTP clients when the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> parameter value
 is empty (the default setting).
 
-<li> Otherwise, Postfix appends the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a>
-value to incomplete message header addresses from remote SMTP
-clients.  This feature can be used to append a reserved domain such
-as "domain.invalid", so that incomplete addresses cannot be mistaken
-for local addresses.
+<li> Otherwise, Postfix rewrites message headers from remote SMTP
+clients, and appends the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> value to
+incomplete addresses.  This feature can be used to append a reserved
+domain such as "domain.invalid", so that incomplete addresses cannot
+be mistaken for local addresses.
 
 </ul>
 
@@ -414,13 +414,6 @@ mapping lookup table, it first rewrites the address to the standard
 form is to reduce the number of entries needed in lookup tables.
 </p>
 
-<p> NOTE: Postfix versions 2.2 and later rewrite message headers
-from remote SMTP clients only if the client matches the
-<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter, or if the
-<a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter specifies a
-non-empty value. To get the behavior before Postfix 2.2, specify
-"<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> = static:all".  </p>
-
 <p> The Postfix <a href="trivial-rewrite.8.html">trivial-rewrite(8)</a> daemon implements the following
 hard-coded address manipulations: </p>
 
@@ -434,21 +427,41 @@ hard-coded address manipulations: </p>
 is called a route address, and specifies that mail for "user@site"
 be delivered via "hosta" and "hostb". Usage of this form has been
 deprecated for a long time.  Postfix has no ability to handle route
-addresses, other than to strip off the route part.  </p> </dd>
+addresses, other than to strip off the route part.  </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter, or if the
+<a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> = static:all".  </p> </dd>
 
 <dt>Rewrite "site!user" to "user@site" </dt>
 
 <dd> <p> This feature is controlled by the boolean <a href="postconf.5.html#swap_bangpath">swap_bangpath</a>
 parameter (default: yes).  The purpose is to rewrite UUCP-style
 addresses to domain style. This is useful only when you receive
-mail via UUCP, but it probably does not hurt otherwise. </p> </dd>
+mail via UUCP, but it probably does not hurt otherwise. </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter, or if the
+<a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> = static:all".  </p> </dd>
 
 <dt>Rewrite "user%domain" to "user@domain"</dt>
 
 <dd> <p> This feature is controlled by the boolean <a href="postconf.5.html#allow_percent_hack">allow_percent_hack</a>
 parameter (default: yes). Typically, this is used in order to deal
 with monstrosities such as "user%domain@otherdomain". </p>
-</dd>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter, or if the
+<a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> = static:all".  </p> </dd>
 
 <dt>
 
@@ -499,7 +512,14 @@ of having Postfix's own domain appended automatically. </p> </dd>
 
 <dd> <p> A single trailing dot is silently removed. However, an
 address that ends in multiple dots will be rejected as an invalid
-address. </p> </dd>
+address. </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter, or if the
+<a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> = static:all".  </p> </dd>
 
 </dl>
 
diff --git a/postfix/html/STANDARD_CONFIGURATION_README.html b/postfix/html/STANDARD_CONFIGURATION_README.html
index 00411616a..188e023f4 100644
--- a/postfix/html/STANDARD_CONFIGURATION_README.html
+++ b/postfix/html/STANDARD_CONFIGURATION_README.html
@@ -430,7 +430,7 @@ listening on the internal interface. In such a configuration is it is
 tempting to configure $<a href="postconf.5.html#inet_interfaces">inet_interfaces</a> in each instance with just the
 corresponding interface address. </p>
 
-<p> In most cases using inet_interaces in this way will not work,
+<p> In most cases, using <a href="postconf.5.html#inet_interfaces">inet_interfaces</a> in this way will not work,
 because as documented in the $<a href="postconf.5.html#inet_interfaces">inet_interfaces</a> reference manual, the
 <a href="smtp.8.html">smtp(8)</a> delivery agent will also use the specified interface address
 as the source address for outbound connections and will be unable to
diff --git a/postfix/html/canonical.5.html b/postfix/html/canonical.5.html
index ce76539ba..d5c9d4dd8 100644
--- a/postfix/html/canonical.5.html
+++ b/postfix/html/canonical.5.html
@@ -47,6 +47,14 @@ CANONICAL(5)                                                      CANONICAL(5)
        Sendmail rule set <b>S3</b>, if you  like.   This  is  controlled
        with the <b><a href="postconf.5.html#canonical_classes">canonical_classes</a></b> parameter.
 
+       NOTE: Postfix versions 2.2 and later rewrite message head-
+       ers from remote SMTP clients only if  the  client  matches
+       the  <a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a>  parameter,  or  if  the
+       <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> configuration parameter spec-
+       ifies  a non-empty value. To get the behavior before Post-
+       fix   2.2,   specify    "<a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a>    =
+       static:all".
+
        Typically, one would use the <a href="canonical.5.html"><b>canonical</b>(5)</a> table to replace
        login  names  by  <i>Firstname.Lastname</i>,  or  to   clean   up
        addresses produced by legacy mail systems.
@@ -195,6 +203,15 @@ CANONICAL(5)                                                      CANONICAL(5)
               receives mail on.  You need to stop and start Post-
               fix when this parameter changes.
 
+       <b><a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a></b>
+              Rewrite message header addresses in mail from these
+              clients and update incomplete  addresses  with  the
+              domain name in $<a href="postconf.5.html#myorigin">myorigin</a> or $<a href="postconf.5.html#mydomain">mydomain</a>; either don't
+              rewrite message headers from other clients at  all,
+              or  rewrite  message  headers and update incomplete
+              addresses  with  the  domain   specified   in   the
+              <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> parameter.
+
        <b><a href="postconf.5.html#proxy_interfaces">proxy_interfaces</a></b>
               Other interfaces that this machine receives mail on
               by way of a proxy agent or network address transla-
@@ -224,6 +241,12 @@ CANONICAL(5)                                                      CANONICAL(5)
               Give special treatment to <b>owner-</b><i>xxx</i> and <i>xxx</i><b>-request</b>
               addresses.
 
+       <b><a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a></b>
+              Don't rewrite message headers from  remote  clients
+              at all when this parameter is empty; otherwise, re-
+              write message  headers  and  append  the  specified
+              domain name to incomplete addresses.
+
 <b>SEE ALSO</b>
        <a href="cleanup.8.html">cleanup(8)</a>, canonicalize and enqueue mail
        <a href="postmap.1.html">postmap(1)</a>, Postfix lookup table manager
@@ -235,7 +258,7 @@ CANONICAL(5)                                                      CANONICAL(5)
        <a href="ADDRESS_REWRITING_README.html">ADDRESS_REWRITING_README</a>, address rewriting guide
 
 <b>LICENSE</b>
-       The  Secure  Mailer  license must be distributed with this
+       The Secure Mailer license must be  distributed  with  this
        software.
 
 <b>AUTHOR(S)</b>
diff --git a/postfix/html/cleanup.8.html b/postfix/html/cleanup.8.html
index 4f187e1bd..792188942 100644
--- a/postfix/html/cleanup.8.html
+++ b/postfix/html/cleanup.8.html
@@ -245,8 +245,8 @@ CLEANUP(8)                                                          CLEANUP(8)
        <b><a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> (empty)</b>
               Don't rewrite message headers from  remote  clients
               at all when this parameter is empty; otherwise, re-
-              write remote message headers and append the  speci-
-              fied domain name to incomplete addresses.
+              write message  headers  and  append  the  specified
+              domain name to incomplete addresses.
 
 <b>RESOURCE AND RATE CONTROLS</b>
        <b><a href="postconf.5.html#duplicate_filter_limit">duplicate_filter_limit</a> (1000)</b>
diff --git a/postfix/html/ldap_table.5.html b/postfix/html/ldap_table.5.html
index c989d3089..768dabb4a 100644
--- a/postfix/html/ldap_table.5.html
+++ b/postfix/html/ldap_table.5.html
@@ -273,7 +273,7 @@ LDAP_TABLE(5)                                                    LDAP_TABLE(5)
               <b>%[SUD1-9]</b>
                      The  upper-case and decimal digit expansions
                      interpolate  the  parts  of  the  input  key
-                     rather  than  the result. Their behaviour is
+                     rather  than  the  result. Their behavior is
                      identical to that described with  <b>query_fil-</b>
                      <b>ter</b>,  and  in  fact because the input key is
                      known in advance, lookups whose key does not
diff --git a/postfix/html/local.8.html b/postfix/html/local.8.html
index 1ed9eb5a9..c7c0f03c7 100644
--- a/postfix/html/local.8.html
+++ b/postfix/html/local.8.html
@@ -565,7 +565,7 @@ LOCAL(8)                                                              LOCAL(8)
 <b>FILES</b>
        The following are examples; details differ between systems.
        $HOME/.forward, per-user aliasing
-       /etc/aliases, sytem-wide alias database
+       /etc/aliases, system-wide alias database
        /var/spool/mail, system mailboxes
 
 <b>SEE ALSO</b>
diff --git a/postfix/html/mysql_table.5.html b/postfix/html/mysql_table.5.html
index fc75c4d2c..23ed116ae 100644
--- a/postfix/html/mysql_table.5.html
+++ b/postfix/html/mysql_table.5.html
@@ -207,7 +207,7 @@ MYSQL_TABLE(5)                                                  MYSQL_TABLE(5)
               <b>%[SUD1-9]</b>
                      The upper-case and decimal digit  expansions
                      interpolate  the  parts  of  the  input  key
-                     rather than the result. Their  behaviour  is
+                     rather than the result.  Their  behavior  is
                      identical  to that described with <b>query</b>, and
                      in fact because the input key  is  known  in
                      advance,  queries whose key does not contain
diff --git a/postfix/html/pgsql_table.5.html b/postfix/html/pgsql_table.5.html
index 28412b428..13152c9a5 100644
--- a/postfix/html/pgsql_table.5.html
+++ b/postfix/html/pgsql_table.5.html
@@ -61,7 +61,7 @@ PGSQL_TABLE(5)                                                  PGSQL_TABLE(5)
 
            <b>query</b> = SELECT <i>select</i><b>_</b><i>function</i>('%s')
 
-       or  in the absense of <b>selection_function</b>, the lower prece-
+       or  in the absence of <b>selection_function</b>, the lower prece-
        dence:
 
            <b>query</b> = SELECT <i>select</i><b>_</b><i>field</i>
@@ -212,7 +212,7 @@ PGSQL_TABLE(5)                                                  PGSQL_TABLE(5)
               <b>%[SUD1-9]</b>
                      The  upper-case and decimal digit expansions
                      interpolate  the  parts  of  the  input  key
-                     rather  than  the result. Their behaviour is
+                     rather  than  the  result. Their behavior is
                      identical to that described with <b>query</b>,  and
                      in  fact  because  the input key is known in
                      advance, queries whose key does not  contain
diff --git a/postfix/html/postconf.5.html b/postfix/html/postconf.5.html
index db9d2883e..71800a22c 100644
--- a/postfix/html/postconf.5.html
+++ b/postfix/html/postconf.5.html
@@ -559,7 +559,7 @@ Enable the rewriting of the form "user%domain" to "user@domain".
 This is enabled by default.
 </p>
 
-<p> Note: With Postfix version 2.2, message header address rewriting
+<p> Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
 
 <ul>
@@ -638,11 +638,11 @@ that is received by the Postfix mail system.
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -707,11 +707,11 @@ append the string "@$<a href="postconf.5.html#remote_header_rewrite_domain">remo
 </p>
 
 <p>
-Note 1: This feature is enabled by default and must not be turned off.
+Note 1: this feature is enabled by default and must not be turned off.
 Postfix does not support domain-less addresses.
 </p>
 
-<p> Note 2: With Postfix version 2.2, message header address rewriting
+<p> Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
 
 <ul>
@@ -743,12 +743,12 @@ instead.
 </p>
 
 <p>
-Note 1: This feature is enabled by default. If disabled, users will not be
+Note 1: this feature is enabled by default. If disabled, users will not be
 able to send mail to "user@partialdomainname" but will have to
 specify full domain names instead.
 </p>
 
-<p> Note 2: With Postfix version 2.2, message header address rewriting
+<p> Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
 
 <ul>
@@ -2216,7 +2216,7 @@ host, host:port, [host]:port, [address] or [address]:port; the form
 [host] turns off MX lookups.  If you specify multiple SMTP
 destinations, Postfix will try them in the specified order.  </p>
 
-<p> NOTE: Do not use the <a href="postconf.5.html#fallback_relay">fallback_relay</a> feature when relaying mail
+<p> Note: do not use the <a href="postconf.5.html#fallback_relay">fallback_relay</a> feature when relaying mail
 for a backup or primary MX domain. Mail would loop between the
 Postfix MX host and the <a href="postconf.5.html#fallback_relay">fallback_relay</a> host when the final destination
 is unavailable. </p>
@@ -3291,10 +3291,12 @@ into concurrency per domain.  </p>
 <DT><b><a name="local_header_rewrite_clients">local_header_rewrite_clients</a>
 (default: <a href="postconf.5.html#permit_inet_interfaces">permit_inet_interfaces</a>)</b></DT><DD>
 
-<p> Append the domain name in $<a href="postconf.5.html#myorigin">myorigin</a> or $<a href="postconf.5.html#mydomain">mydomain</a> to message
-header addresses from these clients only; either don't rewrite
-message headers from other clients at all, or append the domain
-specified with the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> parameter.  </p>
+<p> Rewrite message header addresses in mail from these clients and
+update incomplete addresses with the domain name in $<a href="postconf.5.html#myorigin">myorigin</a> or
+$<a href="postconf.5.html#mydomain">mydomain</a>; either don't rewrite message headers from other clients
+at all, or rewrite message headers and update incomplete addresses
+with the domain specified in the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a>
+parameter.  </p>
 
 <p> See the <a href="postconf.5.html#append_at_myorigin">append_at_myorigin</a> and <a href="postconf.5.html#append_dot_mydomain">append_dot_mydomain</a> parameters
 for details of how domain names are appended to incomplete addresses.
@@ -3369,7 +3371,7 @@ from Postfix sendmail and in SMTP mail from this machine. </p>
 $<a href="postconf.5.html#myorigin">myorigin</a> or $<a href="postconf.5.html#mydomain">mydomain</a> information only with mail from Postfix
 sendmail, from local clients, or from authorized SMTP clients. </p>
 
-<p> NOTE: This setting will not prevent remote mail header address
+<p> Note: this setting will not prevent remote mail header address
 rewriting when mail from a remote client is forwarded by a neighboring
 system.  </p>
 
@@ -3537,7 +3539,7 @@ Note: <a href="postconf.5.html#luser_relay">luser_relay</a> works only for the P
 </p>
 
 <p>
-NOTE: if you use this feature for accounts not in the UNIX password
+Note: if you use this feature for accounts not in the UNIX password
 file, then you must specify "<a href="postconf.5.html#local_recipient_maps">local_recipient_maps</a> =" (i.e. empty)
 in the main.cf file, otherwise the Postfix SMTP server will reject mail
 for non-UNIX accounts with "User unknown in local recipient table".
@@ -5058,11 +5060,11 @@ run "<b>postmap /etc/postfix/recipient_bcc</b>".
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -5231,7 +5233,7 @@ recipient addresses with $<a href="postconf.5.html#relay_recipient_maps">relay_r
 recipients. See also the <a href="ADDRESS_CLASS_README.html#relay_domain_class">relay domains</a> address class in the
 <a href="ADDRESS_CLASS_README.html">ADDRESS_CLASS_README</a> file.  </p>
 
-<p> NOTE: Postfix will not automatically forward mail for domains
+<p> Note: Postfix will not automatically forward mail for domains
 that list this system as their primary or backup MX host. See the
 <a href="postconf.5.html#permit_mx_backup">permit_mx_backup</a> restriction in the <a href="postconf.5.html">postconf(5)</a> manual page.  </p>
 
@@ -5395,8 +5397,8 @@ Examples:
 (default: empty)</b></DT><DD>
 
 <p> Don't rewrite message headers from remote clients at all when
-this parameter is empty; otherwise, rewrite remote message headers
-and append the specified domain name to incomplete addresses.  The
+this parameter is empty; otherwise, rewrite message headers and
+append the specified domain name to incomplete addresses.  The
 <a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> parameter controls what clients Postfix
 considers local. </p>
 
@@ -5548,11 +5550,11 @@ run "<b>postmap /etc/postfix/sender_bcc</b>".
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -6790,7 +6792,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as <b>btree</b> or <b>sdbm</b>; there is no need to support
 concurrent access.  The file is created if it does not exist.  </p>
 
-<p> NOTE: <b>dbm</b> databases are not suitable. TLS
+<p> Note: <b>dbm</b> databases are not suitable. TLS
 session objects are too large. </p>
 
 <p> Example: </p>
@@ -7291,7 +7293,7 @@ a restriction list, to make the default policy explicit.</dd>
 <dd>Reject the request when the envelope sender is the null address,
 and the message has multiple envelope recipients. Although this
 usage is technically allowed, it seems to have no legitimate
-application. <br> NOTE: this restriction can only work reliably
+application. <br> Note: this restriction can only work reliably
 when used in <a href="postconf.5.html#smtpd_data_restrictions">smtpd_data_restrictions</a> or
 <a href="postconf.5.html#smtpd_end_of_data_restrictions">smtpd_end_of_data_restrictions</a>, because the total number of
 recipients is not known at an earlier stage of the SMTP conversation.
@@ -7308,7 +7310,7 @@ of time where it is not allowed, or when the client sends SMTP
 commands ahead of time without knowing that Postfix actually supports
 ESMTP command pipelining. This stops mail from bulk mail software
 that improperly uses ESMTP command pipelining in order to speed up
-deliveries. <br> NOTE: <a href="postconf.5.html#reject_unauth_pipelining">reject_unauth_pipelining</a> is not useful
+deliveries. <br> Note: <a href="postconf.5.html#reject_unauth_pipelining">reject_unauth_pipelining</a> is not useful
 outside <a href="postconf.5.html#smtpd_data_restrictions">smtpd_data_restrictions</a> when 1) the client uses ESMTP (EHLO
 instead of HELO) and 2) with "<a href="postconf.5.html#smtpd_delay_reject">smtpd_delay_reject</a> = yes" (the
 default).  The use of <a href="postconf.5.html#reject_unauth_pipelining">reject_unauth_pipelining</a> in the other
@@ -8024,7 +8026,7 @@ system is the final destination. However, the SMTP server will not
 forward mail with addresses that have sender-specified routing
 information (example: user@elsewhere@domain).  Use the optional
 <a href="postconf.5.html#permit_mx_backup_networks">permit_mx_backup_networks</a> parameter to require that the primary
-MX hosts match a list of network blocks. <br> NOTE: prior to
+MX hosts match a list of network blocks. <br> Note: prior to
 Postfix version 2.0, use of <a href="postconf.5.html#permit_mx_backup">permit_mx_backup</a> is not recommended;
 mail may be rejected in case of a temporary DNS lookup problem. </dd>
 
@@ -8923,7 +8925,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as <b>btree</b> or <b>sdbm</b>; there is no need to support
 concurrent access.  The file is created if it does not exist.  </p>
 
-<p> NOTE: <b>dbm</b> databases are not suitable. TLS
+<p> Note: <b>dbm</b> databases are not suitable. TLS
 session objects are too large. </p>
 
 <p> Example: </p>
@@ -9135,7 +9137,7 @@ necessary if your machine is connected to UUCP networks.  It is
 enabled by default.
 </p>
 
-<p> Note: With Postfix version 2.2, message header address rewriting
+<p> Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
 
 <ul>
@@ -9799,7 +9801,7 @@ such deliveries are safe without application-level locks.
 </p>
 
 <p>
-Note 1: The <b>dotlock</b> method requires that the recipient UID
+Note 1: the <b>dotlock</b> method requires that the recipient UID
 or GID has write access to the parent directory of the recipient's
 mailbox file.
 </p>
diff --git a/postfix/html/smtpd.8.html b/postfix/html/smtpd.8.html
index 6af8d162b..a6362559e 100644
--- a/postfix/html/smtpd.8.html
+++ b/postfix/html/smtpd.8.html
@@ -130,11 +130,13 @@ SMTPD(8)                                                              SMTPD(8)
        Available in Postfix version 2.2 and later:
 
        <b><a href="postconf.5.html#local_header_rewrite_clients">local_header_rewrite_clients</a> (<a href="postconf.5.html#permit_inet_interfaces">permit_inet_interfaces</a>)</b>
-              Append the domain name in $<a href="postconf.5.html#myorigin">myorigin</a> or $<a href="postconf.5.html#mydomain">mydomain</a> to
-              message  header  addresses from these clients only;
-              either don't rewrite  message  headers  from  other
-              clients at all, or append the domain specified with
-              the <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> parameter.
+              Rewrite message header addresses in mail from these
+              clients  and  update  incomplete addresses with the
+              domain name in $<a href="postconf.5.html#myorigin">myorigin</a> or $<a href="postconf.5.html#mydomain">mydomain</a>; either don't
+              rewrite  message headers from other clients at all,
+              or rewrite message headers  and  update  incomplete
+              addresses   with   the   domain  specified  in  the
+              <a href="postconf.5.html#remote_header_rewrite_domain">remote_header_rewrite_domain</a> parameter.
 
 <b>AFTER QUEUE EXTERNAL CONTENT INSPECTION CONTROLS</b>
        As of version 1.0, Postfix can be configured to  send  new
diff --git a/postfix/man/man5/canonical.5 b/postfix/man/man5/canonical.5
index 36ce43938..4cf4253c5 100644
--- a/postfix/man/man5/canonical.5
+++ b/postfix/man/man5/canonical.5
@@ -44,6 +44,13 @@ that are used in SMTP protocol commands). Think Sendmail
 rule set \fBS3\fR, if you like.  This is controlled with
 the \fBcanonical_classes\fR parameter.
 
+NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+local_header_rewrite_clients parameter, or if the
+remote_header_rewrite_domain configuration parameter specifies
+a non-empty value. To get the behavior before Postfix 2.2,
+specify "local_header_rewrite_clients = static:all".
+
 Typically, one would use the \fBcanonical\fR(5) table to replace login
 names by \fIFirstname.Lastname\fR, or to clean up addresses produced
 by legacy mail systems.
@@ -191,6 +198,13 @@ Other parameters of interest:
 .IP \fBinet_interfaces\fR
 The network interface addresses that this system receives mail on.
 You need to stop and start Postfix when this parameter changes.
+.IP \fBlocal_header_rewrite_clients\fR
+Rewrite message header addresses in mail from these clients
+and update incomplete addresses with the domain name in
+$myorigin or $mydomain; either don't rewrite message headers
+from other clients at all, or rewrite message headers and
+update incomplete addresses with the domain specified in
+the remote_header_rewrite_domain parameter.
 .IP \fBproxy_interfaces\fR
 Other interfaces that this machine receives mail on by way of a
 proxy agent or network address translator.
@@ -209,6 +223,11 @@ The domain that is appended to locally-posted mail.
 .IP \fBowner_request_special\fR
 Give special treatment to \fBowner-\fIxxx\fR and \fIxxx\fB-request\fR
 addresses.
+.IP \fBremote_header_rewrite_domain\fR
+Don't rewrite message headers from remote clients at all
+when this parameter is empty; otherwise, rewrite message
+headers and append the specified domain name to incomplete
+addresses.
 .SH "SEE ALSO"
 .na
 .nf
diff --git a/postfix/man/man5/ldap_table.5 b/postfix/man/man5/ldap_table.5
index c4b1d8f8a..3aa9e1e63 100644
--- a/postfix/man/man5/ldap_table.5
+++ b/postfix/man/man5/ldap_table.5
@@ -262,7 +262,7 @@ is skipped.
 .IP "\fB\fB%[SUD1-9]\fR\fB"
 The upper-case and decimal digit expansions interpolate
 the parts of the input key rather than the result. Their
-behaviour is identical to that described with \fBquery_filter\fR,
+behavior is identical to that described with \fBquery_filter\fR,
 and in fact because the input key is known in advance, lookups
 whose key does not contain all the information specified in
 the result template are suppressed and return no results.
diff --git a/postfix/man/man5/mysql_table.5 b/postfix/man/man5/mysql_table.5
index 4ccb097ba..b3f3c3eb2 100644
--- a/postfix/man/man5/mysql_table.5
+++ b/postfix/man/man5/mysql_table.5
@@ -214,7 +214,7 @@ is skipped.
 .IP "\fB\fB%[SUD1-9]\fR\fB"
 The upper-case and decimal digit expansions interpolate
 the parts of the input key rather than the result. Their
-behaviour is identical to that described with \fBquery\fR,
+behavior is identical to that described with \fBquery\fR,
 and in fact because the input key is known in advance, queries
 whose key does not contain all the information specified in
 the result template are suppressed and return no results.
diff --git a/postfix/man/man5/pgsql_table.5 b/postfix/man/man5/pgsql_table.5
index 6a3925c47..ccf886457 100644
--- a/postfix/man/man5/pgsql_table.5
+++ b/postfix/man/man5/pgsql_table.5
@@ -63,7 +63,7 @@ migrate to the new interface set:
 .ti +4
 \fBquery\fR = SELECT \fIselect_function\fR('%s')
 
-or in the absense of \fBselection_function\fR, the lower precedence:
+or in the absence of \fBselection_function\fR, the lower precedence:
 
 .ti +4
 \fBquery\fR = SELECT \fIselect_field\fR
@@ -215,7 +215,7 @@ is skipped.
 .IP "\fB\fB%[SUD1-9]\fR\fB"
 The upper-case and decimal digit expansions interpolate
 the parts of the input key rather than the result. Their
-behaviour is identical to that described with \fBquery\fR,
+behavior is identical to that described with \fBquery\fR,
 and in fact because the input key is known in advance, queries
 whose key does not contain all the information specified in
 the result template are suppressed and return no results.
diff --git a/postfix/man/man5/postconf.5 b/postfix/man/man5/postconf.5
index 3e60aa7fc..4e3570cd5 100644
--- a/postfix/man/man5/postconf.5
+++ b/postfix/man/man5/postconf.5
@@ -306,7 +306,7 @@ difficult to enforce consistently and globally.
 Enable the rewriting of the form "user%domain" to "user@domain".
 This is enabled by default.
 .PP
-Note: With Postfix version 2.2, message header address rewriting
+Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true:
 .IP \(bu
 The message is received with the Postfix \fBsendmail\fR(1) command,
@@ -352,10 +352,10 @@ and \fBpostdrop\fR(1).
 Optional address that receives a "blind carbon copy" of each message
 that is received by the Postfix mail system.
 .PP
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 .PP
-NOTE: automatic BCC recipients are produced only for new mail.
+Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself.
@@ -385,10 +385,10 @@ With locally submitted mail, append the string "@$myorigin" to mail
 addresses without domain information. With remotely submitted mail,
 append the string "@$remote_header_rewrite_domain" instead.
 .PP
-Note 1: This feature is enabled by default and must not be turned off.
+Note 1: this feature is enabled by default and must not be turned off.
 Postfix does not support domain-less addresses.
 .PP
-Note 2: With Postfix version 2.2, message header address rewriting
+Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true:
 .IP \(bu
 The message is received with the Postfix \fBsendmail\fR(1) command,
@@ -407,11 +407,11 @@ addresses that have no ".domain" information. With remotely submitted
 mail, append the string ".$remote_header_rewrite_domain"
 instead.
 .PP
-Note 1: This feature is enabled by default. If disabled, users will not be
+Note 1: this feature is enabled by default. If disabled, users will not be
 able to send mail to "user@partialdomainname" but will have to
 specify full domain names instead.
 .PP
-Note 2: With Postfix version 2.2, message header address rewriting
+Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true:
 .IP \(bu
 The message is received with the Postfix \fBsendmail\fR(1) command,
@@ -1172,7 +1172,7 @@ host, host:port, [host]:port, [address] or [address]:port; the form
 [host] turns off MX lookups.  If you specify multiple SMTP
 destinations, Postfix will try them in the specified order.
 .PP
-NOTE: Do not use the fallback_relay feature when relaying mail
+Note: do not use the fallback_relay feature when relaying mail
 for a backup or primary MX domain. Mail would loop between the
 Postfix MX host and the fallback_relay host when the final destination
 is unavailable.
@@ -1737,10 +1737,12 @@ Setting this parameter to a value > 1 changes the meaning of
 local_destination_concurrency_limit from concurrency per recipient
 into concurrency per domain.
 .SH local_header_rewrite_clients (default: permit_inet_interfaces)
-Append the domain name in $myorigin or $mydomain to message
-header addresses from these clients only; either don't rewrite
-message headers from other clients at all, or append the domain
-specified with the remote_header_rewrite_domain parameter.
+Rewrite message header addresses in mail from these clients and
+update incomplete addresses with the domain name in $myorigin or
+$mydomain; either don't rewrite message headers from other clients
+at all, or rewrite message headers and update incomplete addresses
+with the domain specified in the remote_header_rewrite_domain
+parameter.
 .PP
 See the append_at_myorigin and append_dot_mydomain parameters
 for details of how domain names are appended to incomplete addresses.
@@ -1805,7 +1807,7 @@ The intermediate setting: rewrite header addresses and append
 $myorigin or $mydomain information only with mail from Postfix
 sendmail, from local clients, or from authorized SMTP clients.
 .PP
-NOTE: This setting will not prevent remote mail header address
+Note: this setting will not prevent remote mail header address
 rewriting when mail from a remote client is forwarded by a neighboring
 system.
 .PP
@@ -1908,7 +1910,7 @@ Instead of $name you can also specify ${name} or $(name).
 .PP
 Note: luser_relay works only for the Postfix \fBlocal\fR(8) delivery agent.
 .PP
-NOTE: if you use this feature for accounts not in the UNIX password
+Note: if you use this feature for accounts not in the UNIX password
 file, then you must specify "local_recipient_maps =" (i.e. empty)
 in the main.cf file, otherwise the Postfix SMTP server will reject mail
 for non-UNIX accounts with "User unknown in local recipient table".
@@ -2739,10 +2741,10 @@ Look up the "@domain.tld" part.
 Specify the types and names of databases to use.  After change,
 run "\fBpostmap /etc/postfix/recipient_bcc\fR".
 .PP
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 .PP
-NOTE: automatic BCC recipients are produced only for new mail.
+Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself.
@@ -2862,7 +2864,7 @@ recipient addresses with $relay_recipient_maps and rejects non-existent
 recipients. See also the relay domains address class in the
 ADDRESS_CLASS_README file.
 .PP
-NOTE: Postfix will not automatically forward mail for domains
+Note: Postfix will not automatically forward mail for domains
 that list this system as their primary or backup MX host. See the
 permit_mx_backup restriction in the \fBpostconf\fR(5) manual page.
 .PP
@@ -2966,8 +2968,8 @@ relocated_maps = hash:/etc/postfix/relocated
 .ft R
 .SH remote_header_rewrite_domain (default: empty)
 Don't rewrite message headers from remote clients at all when
-this parameter is empty; otherwise, rewrite remote message headers
-and append the specified domain name to incomplete addresses.  The
+this parameter is empty; otherwise, rewrite message headers and
+append the specified domain name to incomplete addresses.  The
 local_header_rewrite_clients parameter controls what clients Postfix
 considers local.
 .PP
@@ -3064,10 +3066,10 @@ Look up the "@domain.tld" part.
 Specify the types and names of databases to use.  After change,
 run "\fBpostmap /etc/postfix/sender_bcc\fR".
 .PP
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 .PP
-NOTE: automatic BCC recipients are produced only for new mail.
+Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself.
@@ -3785,7 +3787,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as \fBbtree\fR or \fBsdbm\fR; there is no need to support
 concurrent access.  The file is created if it does not exist.
 .PP
-NOTE: \fBdbm\fR databases are not suitable. TLS
+Note: \fBdbm\fR databases are not suitable. TLS
 session objects are too large.
 .PP
 Example:
@@ -4112,7 +4114,7 @@ and the message has multiple envelope recipients. Although this
 usage is technically allowed, it seems to have no legitimate
 application.
 .br
-NOTE: this restriction can only work reliably
+Note: this restriction can only work reliably
 when used in smtpd_data_restrictions or
 smtpd_end_of_data_restrictions, because the total number of
 recipients is not known at an earlier stage of the SMTP conversation.
@@ -4129,7 +4131,7 @@ ESMTP command pipelining. This stops mail from bulk mail software
 that improperly uses ESMTP command pipelining in order to speed up
 deliveries.
 .br
-NOTE: reject_unauth_pipelining is not useful
+Note: reject_unauth_pipelining is not useful
 outside smtpd_data_restrictions when 1) the client uses ESMTP (EHLO
 instead of HELO) and 2) with "smtpd_delay_reject = yes" (the
 default).  The use of reject_unauth_pipelining in the other
@@ -4548,7 +4550,7 @@ information (example: user@elsewhere@domain).  Use the optional
 permit_mx_backup_networks parameter to require that the primary
 MX hosts match a list of network blocks.
 .br
-NOTE: prior to
+Note: prior to
 Postfix version 2.0, use of permit_mx_backup is not recommended;
 mail may be rejected in case of a temporary DNS lookup problem.
 .IP "\fBreject_non_fqdn_recipient\fR"
@@ -5170,7 +5172,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as \fBbtree\fR or \fBsdbm\fR; there is no need to support
 concurrent access.  The file is created if it does not exist.
 .PP
-NOTE: \fBdbm\fR databases are not suitable. TLS
+Note: \fBdbm\fR databases are not suitable. TLS
 session objects are too large.
 .PP
 Example:
@@ -5276,7 +5278,7 @@ Enable the rewriting of "site!user" into "user@site".  This is
 necessary if your machine is connected to UUCP networks.  It is
 enabled by default.
 .PP
-Note: With Postfix version 2.2, message header address rewriting
+Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true:
 .IP \(bu
 The message is received with the Postfix \fBsendmail\fR(1) command,
@@ -5629,7 +5631,7 @@ delivery.  For a list of available file locking methods, use the
 This setting is ignored with \fBmaildir\fR style delivery, because
 such deliveries are safe without application-level locks.
 .PP
-Note 1: The \fBdotlock\fR method requires that the recipient UID
+Note 1: the \fBdotlock\fR method requires that the recipient UID
 or GID has write access to the parent directory of the recipient's
 mailbox file.
 .PP
diff --git a/postfix/man/man8/cleanup.8 b/postfix/man/man8/cleanup.8
index 0093e4113..f1cce61e6 100644
--- a/postfix/man/man8/cleanup.8
+++ b/postfix/man/man8/cleanup.8
@@ -209,8 +209,8 @@ What addresses are subject to sender_canonical_maps address
 mapping.
 .IP "\fBremote_header_rewrite_domain (empty)\fR"
 Don't rewrite message headers from remote clients at all when
-this parameter is empty; otherwise, rewrite remote message headers
-and append the specified domain name to incomplete addresses.
+this parameter is empty; otherwise, rewrite message headers and
+append the specified domain name to incomplete addresses.
 .SH "RESOURCE AND RATE CONTROLS"
 .na
 .nf
diff --git a/postfix/man/man8/local.8 b/postfix/man/man8/local.8
index 00156aa8f..7165dddf3 100644
--- a/postfix/man/man8/local.8
+++ b/postfix/man/man8/local.8
@@ -537,7 +537,7 @@ records, so that "smtpd" becomes, for example, "postfix/smtpd".
 .nf
 The following are examples; details differ between systems.
 $HOME/.forward, per-user aliasing
-/etc/aliases, sytem-wide alias database
+/etc/aliases, system-wide alias database
 /var/spool/mail, system mailboxes
 .SH "SEE ALSO"
 .na
diff --git a/postfix/man/man8/smtpd.8 b/postfix/man/man8/smtpd.8
index 194cb0266..1a5b2b35a 100644
--- a/postfix/man/man8/smtpd.8
+++ b/postfix/man/man8/smtpd.8
@@ -127,10 +127,12 @@ filtering, or address mapping.
 .PP
 Available in Postfix version 2.2 and later:
 .IP "\fBlocal_header_rewrite_clients (permit_inet_interfaces)\fR"
-Append the domain name in $myorigin or $mydomain to message
-header addresses from these clients only; either don't rewrite
-message headers from other clients at all, or append the domain
-specified with the remote_header_rewrite_domain parameter.
+Rewrite message header addresses in mail from these clients and
+update incomplete addresses with the domain name in $myorigin or
+$mydomain; either don't rewrite message headers from other clients
+at all, or rewrite message headers and update incomplete addresses
+with the domain specified in the remote_header_rewrite_domain
+parameter.
 .SH "AFTER QUEUE EXTERNAL CONTENT INSPECTION CONTROLS"
 .na
 .nf
diff --git a/postfix/proto/ADDRESS_REWRITING_README.html b/postfix/proto/ADDRESS_REWRITING_README.html
index a8ac3d1bd..4955a6e8b 100644
--- a/postfix/proto/ADDRESS_REWRITING_README.html
+++ b/postfix/proto/ADDRESS_REWRITING_README.html
@@ -153,21 +153,21 @@ how it works:  </p>
 
 <ul>
 
-<li> Postfix always rewrites message header addresses from local
-SMTP clients, and from the Postfix sendmail command.  The
-local_header_rewrite_clients parameter controls what SMTP clients
-Postfix considers local (by default, only local network interface
-addresses).
+<li> Postfix always rewrites message headers from local SMTP clients
+and from the Postfix sendmail command, and appends its own domain
+to incomplete addresses.  The local_header_rewrite_clients parameter
+controls what SMTP clients Postfix considers local (by default,
+only local network interface addresses).
 
 <li> Postfix never rewrites message header addresses from remote
 SMTP clients when the remote_header_rewrite_domain parameter value
 is empty (the default setting).
 
-<li> Otherwise, Postfix appends the remote_header_rewrite_domain
-value to incomplete message header addresses from remote SMTP
-clients.  This feature can be used to append a reserved domain such
-as "domain.invalid", so that incomplete addresses cannot be mistaken
-for local addresses.
+<li> Otherwise, Postfix rewrites message headers from remote SMTP
+clients, and appends the remote_header_rewrite_domain value to
+incomplete addresses.  This feature can be used to append a reserved
+domain such as "domain.invalid", so that incomplete addresses cannot
+be mistaken for local addresses.
 
 </ul>
 
@@ -414,13 +414,6 @@ trivial-rewrite(8) daemon.  The purpose of rewriting to standard
 form is to reduce the number of entries needed in lookup tables.
 </p>
 
-<p> NOTE: Postfix versions 2.2 and later rewrite message headers
-from remote SMTP clients only if the client matches the
-local_header_rewrite_clients parameter, or if the
-remote_header_rewrite_domain configuration parameter specifies a
-non-empty value. To get the behavior before Postfix 2.2, specify
-"local_header_rewrite_clients = static:all".  </p>
-
 <p> The Postfix trivial-rewrite(8) daemon implements the following
 hard-coded address manipulations: </p>
 
@@ -434,21 +427,41 @@ hard-coded address manipulations: </p>
 is called a route address, and specifies that mail for "user@site"
 be delivered via "hosta" and "hostb". Usage of this form has been
 deprecated for a long time.  Postfix has no ability to handle route
-addresses, other than to strip off the route part.  </p> </dd>
+addresses, other than to strip off the route part.  </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+local_header_rewrite_clients parameter, or if the
+remote_header_rewrite_domain configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"local_header_rewrite_clients = static:all".  </p> </dd>
 
 <dt>Rewrite "site!user" to "user@site" </dt>
 
 <dd> <p> This feature is controlled by the boolean swap_bangpath
 parameter (default: yes).  The purpose is to rewrite UUCP-style
 addresses to domain style. This is useful only when you receive
-mail via UUCP, but it probably does not hurt otherwise. </p> </dd>
+mail via UUCP, but it probably does not hurt otherwise. </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+local_header_rewrite_clients parameter, or if the
+remote_header_rewrite_domain configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"local_header_rewrite_clients = static:all".  </p> </dd>
 
 <dt>Rewrite "user%domain" to "user@domain"</dt>
 
 <dd> <p> This feature is controlled by the boolean allow_percent_hack
 parameter (default: yes). Typically, this is used in order to deal
 with monstrosities such as "user%domain@otherdomain". </p>
-</dd>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+local_header_rewrite_clients parameter, or if the
+remote_header_rewrite_domain configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"local_header_rewrite_clients = static:all".  </p> </dd>
 
 <dt>
 
@@ -499,7 +512,14 @@ of having Postfix's own domain appended automatically. </p> </dd>
 
 <dd> <p> A single trailing dot is silently removed. However, an
 address that ends in multiple dots will be rejected as an invalid
-address. </p> </dd>
+address. </p>
+
+<p> NOTE: Postfix versions 2.2 and later rewrite message headers
+from remote SMTP clients only if the client matches the
+local_header_rewrite_clients parameter, or if the
+remote_header_rewrite_domain configuration parameter specifies a
+non-empty value. To get the behavior before Postfix 2.2, specify
+"local_header_rewrite_clients = static:all".  </p> </dd>
 
 </dl>
 
diff --git a/postfix/proto/STANDARD_CONFIGURATION_README.html b/postfix/proto/STANDARD_CONFIGURATION_README.html
index e97ff32fb..9b0ae01cb 100644
--- a/postfix/proto/STANDARD_CONFIGURATION_README.html
+++ b/postfix/proto/STANDARD_CONFIGURATION_README.html
@@ -430,7 +430,7 @@ listening on the internal interface. In such a configuration is it is
 tempting to configure $inet_interfaces in each instance with just the
 corresponding interface address. </p>
 
-<p> In most cases using inet_interaces in this way will not work,
+<p> In most cases, using inet_interfaces in this way will not work,
 because as documented in the $inet_interfaces reference manual, the
 smtp(8) delivery agent will also use the specified interface address
 as the source address for outbound connections and will be unable to
diff --git a/postfix/proto/canonical b/postfix/proto/canonical
index 2d7f17b72..fa04fbf74 100644
--- a/postfix/proto/canonical
+++ b/postfix/proto/canonical
@@ -38,6 +38,13 @@
 #	rule set \fBS3\fR, if you like.  This is controlled with
 #	the \fBcanonical_classes\fR parameter.
 #
+#	NOTE: Postfix versions 2.2 and later rewrite message headers
+#	from remote SMTP clients only if the client matches the
+#	local_header_rewrite_clients parameter, or if the
+#	remote_header_rewrite_domain configuration parameter specifies
+#	a non-empty value. To get the behavior before Postfix 2.2,
+#	specify "local_header_rewrite_clients = static:all".
+#
 #	Typically, one would use the \fBcanonical\fR(5) table to replace login
 #	names by \fIFirstname.Lastname\fR, or to clean up addresses produced
 #	by legacy mail systems.
@@ -169,6 +176,13 @@
 # .IP \fBinet_interfaces\fR
 #	The network interface addresses that this system receives mail on.
 #	You need to stop and start Postfix when this parameter changes.
+# .IP \fBlocal_header_rewrite_clients\fR
+#	Rewrite message header addresses in mail from these clients
+#	and update incomplete addresses with the domain name in
+#	$myorigin or $mydomain; either don't rewrite message headers
+#	from other clients at all, or rewrite message headers and
+#	update incomplete addresses with the domain specified in
+#	the remote_header_rewrite_domain parameter.
 # .IP \fBproxy_interfaces\fR
 #	Other interfaces that this machine receives mail on by way of a
 #	proxy agent or network address translator.
@@ -187,6 +201,11 @@
 # .IP \fBowner_request_special\fR
 #	Give special treatment to \fBowner-\fIxxx\fR and \fIxxx\fB-request\fR
 #	addresses.
+# .IP \fBremote_header_rewrite_domain\fR
+#	Don't rewrite message headers from remote clients at all
+#	when this parameter is empty; otherwise, rewrite message
+#	headers and append the specified domain name to incomplete
+#	addresses.
 # SEE ALSO
 #	cleanup(8), canonicalize and enqueue mail
 #	postmap(1), Postfix lookup table manager
diff --git a/postfix/proto/ldap_table b/postfix/proto/ldap_table
index c3a0fdf13..13dc54972 100644
--- a/postfix/proto/ldap_table
+++ b/postfix/proto/ldap_table
@@ -250,7 +250,7 @@
 # .IP "\fB\fB%[SUD1-9]\fR\fB"
 #	The upper-case and decimal digit expansions interpolate
 #	the parts of the input key rather than the result. Their
-#	behaviour is identical to that described with \fBquery_filter\fR,
+#	behavior is identical to that described with \fBquery_filter\fR,
 #	and in fact because the input key is known in advance, lookups
 #	whose key does not contain all the information specified in
 #	the result template are suppressed and return no results.
diff --git a/postfix/proto/mysql_table b/postfix/proto/mysql_table
index f3b3837ad..1ddc07aa9 100644
--- a/postfix/proto/mysql_table
+++ b/postfix/proto/mysql_table
@@ -202,7 +202,7 @@
 # .IP "\fB\fB%[SUD1-9]\fR\fB"
 #	The upper-case and decimal digit expansions interpolate
 #	the parts of the input key rather than the result. Their
-#	behaviour is identical to that described with \fBquery\fR,
+#	behavior is identical to that described with \fBquery\fR,
 #	and in fact because the input key is known in advance, queries
 #	whose key does not contain all the information specified in
 #	the result template are suppressed and return no results.
diff --git a/postfix/proto/pgsql_table b/postfix/proto/pgsql_table
index 2a3be10c3..074ec7f0f 100644
--- a/postfix/proto/pgsql_table
+++ b/postfix/proto/pgsql_table
@@ -55,7 +55,7 @@
 # .ti +4
 #	\fBquery\fR = SELECT \fIselect_function\fR('%s')
 #
-#	or in the absense of \fBselection_function\fR, the lower precedence:
+#	or in the absence of \fBselection_function\fR, the lower precedence:
 #
 # .ti +4
 #	\fBquery\fR = SELECT \fIselect_field\fR
@@ -203,7 +203,7 @@
 # .IP "\fB\fB%[SUD1-9]\fR\fB"
 #	The upper-case and decimal digit expansions interpolate
 #	the parts of the input key rather than the result. Their
-#	behaviour is identical to that described with \fBquery\fR,
+#	behavior is identical to that described with \fBquery\fR,
 #	and in fact because the input key is known in advance, queries
 #	whose key does not contain all the information specified in
 #	the result template are suppressed and return no results.
diff --git a/postfix/proto/postconf.proto b/postfix/proto/postconf.proto
index d97a5c478..83eedcdda 100644
--- a/postfix/proto/postconf.proto
+++ b/postfix/proto/postconf.proto
@@ -511,7 +511,7 @@ Enable the rewriting of the form "user%domain" to "user@domain".
 This is enabled by default.
 </p>
 
-<p> Note: With Postfix version 2.2, message header address rewriting
+<p> Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
  
 <ul>
@@ -564,11 +564,11 @@ that is received by the Postfix mail system.
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -1217,7 +1217,7 @@ host, host:port, [host]:port, [address] or [address]:port; the form
 [host] turns off MX lookups.  If you specify multiple SMTP
 destinations, Postfix will try them in the specified order.  </p>
 
-<p> NOTE: Do not use the fallback_relay feature when relaying mail
+<p> Note: do not use the fallback_relay feature when relaying mail
 for a backup or primary MX domain. Mail would loop between the
 Postfix MX host and the fallback_relay host when the final destination
 is unavailable. </p>
@@ -2146,7 +2146,7 @@ Note: luser_relay works only for the Postfix local(8) delivery agent.
 </p>
 
 <p>
-NOTE: if you use this feature for accounts not in the UNIX password
+Note: if you use this feature for accounts not in the UNIX password
 file, then you must specify "local_recipient_maps =" (i.e. empty)
 in the main.cf file, otherwise the Postfix SMTP server will reject mail
 for non-UNIX accounts with "User unknown in local recipient table".
@@ -3094,11 +3094,11 @@ run "<b>postmap /etc/postfix/recipient_bcc</b>".
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -3175,7 +3175,7 @@ recipient addresses with $relay_recipient_maps and rejects non-existent
 recipients. See also the relay domains address class in the
 ADDRESS_CLASS_README file.  </p>
 
-<p> NOTE: Postfix will not automatically forward mail for domains
+<p> Note: Postfix will not automatically forward mail for domains
 that list this system as their primary or backup MX host. See the
 permit_mx_backup restriction in the postconf(5) manual page.  </p>
 
@@ -3367,11 +3367,11 @@ run "<b>postmap /etc/postfix/sender_bcc</b>".
 </p>
 
 <p>
-NOTE: if mail to the BCC address bounces it will be returned to
+Note: if mail to the BCC address bounces it will be returned to
 the sender.
 </p>
 
-<p> NOTE: automatic BCC recipients are produced only for new mail.
+<p> Note: automatic BCC recipients are produced only for new mail.
 To avoid mailer loops, automatic BCC recipients are not generated
 for mail that Postfix forwards internally, nor for mail that Postfix
 generates itself. </p>
@@ -4500,7 +4500,7 @@ a restriction list, to make the default policy explicit.</dd>
 <dd>Reject the request when the envelope sender is the null address,
 and the message has multiple envelope recipients. Although this
 usage is technically allowed, it seems to have no legitimate
-application. <br> NOTE: this restriction can only work reliably
+application. <br> Note: this restriction can only work reliably
 when used in smtpd_data_restrictions or 
 smtpd_end_of_data_restrictions, because the total number of
 recipients is not known at an earlier stage of the SMTP conversation.
@@ -4517,7 +4517,7 @@ of time where it is not allowed, or when the client sends SMTP
 commands ahead of time without knowing that Postfix actually supports
 ESMTP command pipelining. This stops mail from bulk mail software
 that improperly uses ESMTP command pipelining in order to speed up
-deliveries. <br> NOTE: reject_unauth_pipelining is not useful
+deliveries. <br> Note: reject_unauth_pipelining is not useful
 outside smtpd_data_restrictions when 1) the client uses ESMTP (EHLO
 instead of HELO) and 2) with "smtpd_delay_reject = yes" (the
 default).  The use of reject_unauth_pipelining in the other
@@ -5033,7 +5033,7 @@ system is the final destination. However, the SMTP server will not
 forward mail with addresses that have sender-specified routing
 information (example: user@elsewhere@domain).  Use the optional
 permit_mx_backup_networks parameter to require that the primary
-MX hosts match a list of network blocks. <br> NOTE: prior to
+MX hosts match a list of network blocks. <br> Note: prior to
 Postfix version 2.0, use of permit_mx_backup is not recommended;
 mail may be rejected in case of a temporary DNS lookup problem. </dd>
 
@@ -5534,7 +5534,7 @@ necessary if your machine is connected to UUCP networks.  It is
 enabled by default.
 </p>
 
-<p> Note: With Postfix version 2.2, message header address rewriting
+<p> Note: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
  
 <ul>
@@ -5908,11 +5908,11 @@ append the string "@$remote_header_rewrite_domain" instead.
 </p>
 
 <p>
-Note 1: This feature is enabled by default and must not be turned off.
+Note 1: this feature is enabled by default and must not be turned off.
 Postfix does not support domain-less addresses.
 </p>
 
-<p> Note 2: With Postfix version 2.2, message header address rewriting
+<p> Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
  
 <ul>
@@ -5940,12 +5940,12 @@ instead.
 </p>
 
 <p>
-Note 1: This feature is enabled by default. If disabled, users will not be
+Note 1: this feature is enabled by default. If disabled, users will not be
 able to send mail to "user@partialdomainname" but will have to
 specify full domain names instead.
 </p>
 
-<p> Note 2: With Postfix version 2.2, message header address rewriting
+<p> Note 2: with Postfix version 2.2, message header address rewriting
 happens only when one of the following conditions is true: </p>
  
 <ul>
@@ -7450,7 +7450,7 @@ such deliveries are safe without application-level locks.
 </p>
 
 <p>
-Note 1: The <b>dotlock</b> method requires that the recipient UID
+Note 1: the <b>dotlock</b> method requires that the recipient UID
 or GID has write access to the parent directory of the recipient's
 mailbox file.
 </p>
@@ -7665,8 +7665,8 @@ physical endpoints. </p>
 %PARAM remote_header_rewrite_domain 
 
 <p> Don't rewrite message headers from remote clients at all when
-this parameter is empty; otherwise, rewrite remote message headers
-and append the specified domain name to incomplete addresses.  The
+this parameter is empty; otherwise, rewrite message headers and
+append the specified domain name to incomplete addresses.  The
 local_header_rewrite_clients parameter controls what clients Postfix
 considers local. </p>
 
@@ -7689,10 +7689,12 @@ clients at all. </p>
 
 %PARAM local_header_rewrite_clients permit_inet_interfaces
 
-<p> Append the domain name in $myorigin or $mydomain to message
-header addresses from these clients only; either don't rewrite
-message headers from other clients at all, or append the domain
-specified with the remote_header_rewrite_domain parameter.  </p>
+<p> Rewrite message header addresses in mail from these clients and
+update incomplete addresses with the domain name in $myorigin or
+$mydomain; either don't rewrite message headers from other clients
+at all, or rewrite message headers and update incomplete addresses
+with the domain specified in the remote_header_rewrite_domain
+parameter.  </p>
 
 <p> See the append_at_myorigin and append_dot_mydomain parameters
 for details of how domain names are appended to incomplete addresses.
@@ -7767,7 +7769,7 @@ from Postfix sendmail and in SMTP mail from this machine. </p>
 $myorigin or $mydomain information only with mail from Postfix
 sendmail, from local clients, or from authorized SMTP clients. </p>
 
-<p> NOTE: This setting will not prevent remote mail header address
+<p> Note: this setting will not prevent remote mail header address
 rewriting when mail from a remote client is forwarded by a neighboring
 system.  </p>
 
@@ -7989,7 +7991,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as <b>btree</b> or <b>sdbm</b>; there is no need to support
 concurrent access.  The file is created if it does not exist.  </p>
 
-<p> NOTE: <b>dbm</b> databases are not suitable. TLS
+<p> Note: <b>dbm</b> databases are not suitable. TLS
 session objects are too large. </p>
 
 <p> Example: </p>
@@ -8186,7 +8188,7 @@ TLS session cache. Specify a database type that supports enumeration,
 such as <b>btree</b> or <b>sdbm</b>; there is no need to support
 concurrent access.  The file is created if it does not exist.  </p>
 
-<p> NOTE: <b>dbm</b> databases are not suitable. TLS
+<p> Note: <b>dbm</b> databases are not suitable. TLS
 session objects are too large. </p>
 
 <p> Example: </p>
diff --git a/postfix/src/cleanup/cleanup.c b/postfix/src/cleanup/cleanup.c
index a8a3ee083..720e4fe97 100644
--- a/postfix/src/cleanup/cleanup.c
+++ b/postfix/src/cleanup/cleanup.c
@@ -185,8 +185,8 @@
 /*	mapping.
 /* .IP "\fBremote_header_rewrite_domain (empty)\fR"
 /*	Don't rewrite message headers from remote clients at all when
-/*	this parameter is empty; otherwise, rewrite remote message headers
-/*	and append the specified domain name to incomplete addresses.
+/*	this parameter is empty; otherwise, rewrite message headers and
+/*	append the specified domain name to incomplete addresses.
 /* RESOURCE AND RATE CONTROLS
 /* .ad
 /* .fi
diff --git a/postfix/src/global/mail_version.h b/postfix/src/global/mail_version.h
index 7a911e3cd..a1766cde0 100644
--- a/postfix/src/global/mail_version.h
+++ b/postfix/src/global/mail_version.h
@@ -20,7 +20,7 @@
   * Patches change the patchlevel and the release date. Snapshots change the
   * release date only.
   */
-#define MAIL_RELEASE_DATE	"20050308"
+#define MAIL_RELEASE_DATE	"20050309"
 #define MAIL_VERSION_NUMBER	"2.3"
 
 #define VAR_MAIL_VERSION	"mail_version"
diff --git a/postfix/src/local/local.c b/postfix/src/local/local.c
index 413b6fdce..7dfc6770e 100644
--- a/postfix/src/local/local.c
+++ b/postfix/src/local/local.c
@@ -493,7 +493,7 @@
 /* FILES
 /*	The following are examples; details differ between systems.
 /*	$HOME/.forward, per-user aliasing
-/*	/etc/aliases, sytem-wide alias database
+/*	/etc/aliases, system-wide alias database
 /*	/var/spool/mail, system mailboxes
 /* SEE ALSO
 /*	qmgr(8), queue manager
diff --git a/postfix/src/smtpd/smtpd.c b/postfix/src/smtpd/smtpd.c
index 811f75c26..756a4cd93 100644
--- a/postfix/src/smtpd/smtpd.c
+++ b/postfix/src/smtpd/smtpd.c
@@ -109,10 +109,12 @@
 /* .PP
 /*	Available in Postfix version 2.2 and later:
 /* .IP "\fBlocal_header_rewrite_clients (permit_inet_interfaces)\fR"
-/*	Append the domain name in $myorigin or $mydomain to message
-/*	header addresses from these clients only; either don't rewrite
-/*	message headers from other clients at all, or append the domain
-/*	specified with the remote_header_rewrite_domain parameter.
+/*	Rewrite message header addresses in mail from these clients and
+/*	update incomplete addresses with the domain name in $myorigin or
+/*	$mydomain; either don't rewrite message headers from other clients
+/*	at all, or rewrite message headers and update incomplete addresses
+/*	with the domain specified in the remote_header_rewrite_domain
+/*	parameter.
 /* AFTER QUEUE EXTERNAL CONTENT INSPECTION CONTROLS
 /* .ad
 /* .fi