On Mi, 21 iul 10, 20:47:44, Don Armstrong wrote: > On Wed, 21 Jul 2010, Gerfried Fuchs wrote: > > I mean that everyone could mail as [email protected] - and if one is > > out to abuse the system they definitely would choose to use > > [email protected] as sender address and not [email protected]. > > Yeah; the point here is that if someone wants to change the > information of [email protected], you need to send mail to > [email protected] asking for confirmation (ideally with some kind of > secret that only you and whoever reads [email protected] would know; the > message-id would probably be enough.) > > [Anyone can change envelope From and header From to be any value.]
I imagine some automated challenge-response could be implemented for all mails to [email protected] and similar addresses, but I lack the skills to work on something like that. Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature
