On Wednesday 13 August 2003 23:06, Bill Long wrote: > I did some testing by manually connecting to the smtp port. It seems > my courier setup doesn't check the validity of the sender(mail from:) if > the recipient is on the same domain(rcpt to).
I don't think courier EVER checks the 'mail from:' command. It checks to make sure that it's a syntactically valid address, but what else would it check - that the return address is a real account on this system? I often send out mail using an AOL account as the return address because that's the account I give when I've got to give an email address on some web form, etc. (And I certainly don't want to have to actually *use* AOL in order to do this! :-) I'd also be willing to bet that the message didn't really come from your system at all. Someone has "borrowed" your domain. Lots of spammers do this and lots of email viruses do it also to cover their tracks so the recipient doesn't know where the virus really came from. Have this person check out the headers on the message and see where it actually came from, not just what the return address was. Jeff Jansen ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100003ave/direct;at.aspnet_072303_01/01 _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
