On Wednesday, March 10, 2004, 19:22:19, Brad Morgan wrote: > ... > Let me see if I have this right... > > Dale says he's setup for no relay. > > I believe that if you have no relay set then only users that authenticate > can send mail through your server (to other domains).
Correct. > If you have relay for IP addresses set, then only those IPs can send > through your server (to other domains) without authenticating > (authentication is still allowed). In all cases, anyone can send mail > addressed to your domain. Correct. > If I'm right, then when you "fire" an employee, you delete his email > account (or change its password) and they can no longer use your > server to send email to the outside. Correct but if I read his question correctly he's not complaining about the ex-employee relaying thru his server to the outside, he's complaining about the ex-employee sending to other employees. > The above employee can, however, send mail claiming he is still @yourdomain > if he can find an SMTP server to use. This is the classic spoofed from > address. I guess its easy enough to forget to change that information in > your profile and if the new SMTP server doesn't check... > > If I understand SPF correctly, it prevents this last case. Yes. > If you verify the from address, doesn't that also prevent this last > case (at least for mail sent to your domain)? Yes. -- [EMAIL PROTECTED] "The avalanche has already started, it is too Rod Dorman late for the pebbles to vote." � Ambassador Kosh To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
