[Mdaemon-L] email spoofing

Mon, 16 Mar 2026 21:43:02 -0700 

On 3/17/26 11:11, Syafril Hermansyah via Mdaemon-L wrote:




172.16.0.0/16
172.17.20.0/24
172.17.30.0/24
172.17.40.0/24
172.17.50.0/24
172.20.0.0/24
172.22.0.0/24
172.23.0.0/24
172.30.0.0/16
192.168.0.0/24

40.92.0.0/15
40.107.0.0/16
104.47.0.0/17


Ini riskan ada akun yang broadcast spam dari local LAN.


Sebaiknya diisikan daftar email address atau IP tertentu saja yang 
diperbolehkan kirim tanpa matching From: <address>, Return-Path 
<address> dan Credential/Authentication. <address>.


Dpl, IP-2x private LAN dihapus.

Pengaturan akun yang diperbolehkan kirim mail on behalf akun lain 
dimasukkan dalam daftar "send as permission".


https://mdaemon.dutaint.com/mdaemon/25.5.0/security--send-as-permissions.html


Accounts can normally only send mail from their own email address or 
aliases. If, however, there are MDaemon accounts that you would like to 
give permission to "send as" other accounts, then use this page to set 
that up. For example, you could give a manager's assistant permission to 
send messages as if they are coming from the manager's account, or you 
could use a wildcard address, such as "*@example.com," to give all users 
of a specific domain permission to send from a specific address, such as 
"[email protected]". To do so, simply use the options on this page to 
select the account and then list the Send As Addresses from which that 
account will be able to send messages. This will allow the designated 
accounts to send mail from those addresses instead of being blocked by 
the "Credentials used must match those of the return-path address" and 
"Credentials used must match those of the 'From:' header address" 
requirements on the SMTP Authentication screen.


atau di set akun nya

https://mdaemon.dutaint.com/mdaemon/25.5.0/ae_options.html


[x] Account is exempt from the "Authentication credentials must match 
those of the email sender" requirement



Use this option if you wish to exempt the account from the 
"Authentication credentials must match those of the email sender" global 
option located on the SMTP Authentication screen. This option is 
disabled by default.



--
syafril
--------
Syafril Hermansyah

MDaemon-L Moderator, run MDaemon 26.0.0 Beta RC2
Mohon tidak kirim private mail (atau cc:) untuk masalah MDaemon.

Leadership and learning are indispensable to each other
        --- John F. Kennedy


--
--[mdaemon-l]----------------------------------------------------------
Milis ini untuk Diskusi antar pengguna MDaemon Mail Server di Indonesia

Netiket: https://wiki.openstack.org/wiki/MailingListEtiquette
Arsip: http://mdaemon-l.dutaint.com
Dokumentasi : http://mdaemon.dutaint.com
Berlangganan: Kirim mail ke [email protected]
Henti Langgan: Kirim mail ke [email protected]
Versi terakhir: MDaemon 25.5.2, SecurityGateway 12.0.1


























					Kirim email ke