Chris wrote: > You're sure there were Exchange 2003 users in the forwarded > message and > that the message originated on Exchange 2003. Exchange 2003 shouldn't > need to tell any other server about bcc users which were delivered > locally... the bcc recipients would only be transferred in the rcpt to > command to the next hop MTA.
Interesting observation. In looking at what the guy forwarded to me, I see _no_ exposed Exchange 2003 email addresses. Here's what I do see: -----Original Message----- From: Exchange 5.5 replying user [mailto:[EMAIL PROTECTED] Sent: Friday, June 17, 2005 1:48 PM To: The Original Sender of the Message Subject: RE: And This is the original subject Body of the reply to the original message, composed by the E55 user. =========================================== -----Original Message----- From: Message Originator [mailto:[EMAIL PROTECTED] Sent: Friday, June 17, 2005 9:12 AM To: Here is where the addresses are exposed. Some are outside SMTP addresses. Some are SMTP addresses of people on the same Exchange 5.5 server as the person who replied. Some are SMTP addresses of people on yet another Exchange 5.5 server in the organization that is unknown to the actual Exchange 2003 server and the Exchange 5.5 server (separate site, no connectors). NONE of the addresses are on Exchange 2003. I know this, because I'm on the same Exchange 2003 server as the originator of the original message, and my address isn't here. Subject: Here's the original subject. Here's the original body. -- ************************************************************************ ** Here is the standard disclaimer that is added by the Exchange 5.5 server of the replier. This is done via a register hack that I don't remember the url of, not an outside program. This electronic mail transmission contains confidential and/or privileged information intended only for the person(s) named. Any use, distribution, copying or disclosure by another person is strictly prohibited. ************************************************************************ ** So now, I'm having the executive who sent the original message test sending another one, and call up the same Exchange 5.5 user, have her reply, and have her tell him what she sees in the body of the message. It will be interesting to see if she sees all the addresses, or if somewhere along the line these addresses are exposed only for the original sender. Yes, I know this is far-fetched, and not how email systems are supposed to work, mixing up header information in the body, but I've actually seen broken email mta's do this before. I'll let you all know what happens! And thanks for sticking with this. -- Larry Wahlers Concordia Technologies The Lutheran Church - Missouri Synod _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
