> And never ever whitelist local user. I noticed a problem with the descriptive text of DoNoSpoofing. Version 2.0.0(11.09-te-4-Trevor) shows:
"If activated, each external sender address built with a domain in localDomains is regarded a spoofed address. An external sender is a sender from an IP not in acceptAllMail and not authenticated." This can be easily read as either an 'exclusive AND' or an 'inclusive AND.' I believe that the intent is that both conditions in the second sentence must be met. Perhaps the description would be clearer if its structure were changed to read like this: "If activated, any sender that meets all of these conditions is regarded a spoofed address: external sender, built with an address in a domain in localDomains, not authenticated, and not from in IP in acceptAllMail." Using this structure for the descriptions would provide a simple checklist to readers, thereby minimising potential translation errors. HTH. T. ------------------------------------------------------------------------------ Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
