Yes, anyone should be able to send mail to users in my domain, that's right... but the problem is with the "jokers". i.e. one valid user, user1, want's to send a fake mail to user2. He could create one fake account (user3) from my domain in his MUA (evolution, kmail, etc...), and not use authentication for smtp. He could send without problems a mail from [EMAIL PROTECTED] to [EMAIL PROTECTED] That is what it seems to me. Can be avoided that?
No, not really. If your users want to be able to positively identify the sender of a message, encourage them to use GPG or PGP to sign their messages.
------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
