> Yes, anyone should be able to send mail to users in my > domain, that's right... but the problem is with the > "jokers". > i.e. one valid user, user1, want's to send a fake mail > to user2. He could create one fake account (user3) > from my domain in his MUA (evolution, kmail, etc...), > and not use authentication for smtp. > He could send without problems a mail from > [EMAIL PROTECTED] to [EMAIL PROTECTED] > That is what it seems to me. Can be avoided that?
And he can still do that. Authentication doesn't set his From: header. All you've gained is a logged authentication to check it against. ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
