> > How are other people dealing with this? > > I believe there's some buy-in to the idea that running a protected > installation of IIS, and redirecting people to the Imail page once the > HTML has been validated, is much more resilient than Imail alone. >
I don't want to run IIS. I would hope ipSwitch could write some HTTP checking code to refuse this type of malicious request. In the mean time would forcing a SSL connection help? Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit the Knowledge Base for answers to frequently asked questions: http://www.ipswitch.com/support/IMail/
