hi, >> I'm a big -1 on this. The patch will not actually solve the root problem. >> >> On Unix systems, the MTA needs to know that the webserver user is >> 'trusted' to masquerade as another user. In exim this would be the >> 'trusted-users' directive, sendmail, qmail, and postfix have similar >> directives.
Thanks for pointing this out. I was pretty sure there was something un-RFC-ish about my patch. However, I think the patch creates a more intuitive behaviour: If the user supplies a "From: " header, he expects all replies coming back to this address -- be it human generated responses or bounce messages. In contrast to qmail-inject (handling local mails), qmail-smtp (the SMTP-daemon) DOES use the "From" header (of the mail envelope, not header) for the Return-Path. I would call this inconsistent behaviour. However, I'm currently discussing this on the qmail mailing list, please don't be bothered by this here :) > You might consider recommending a configuration setting like the following > in each <VirtualHost> block on a multi-domain Apache server. This sends > bounces and replies to the webmaster of the domain if no attempt is made to > set the From: and Reply-to: headers when mail() is used. > > <VirtualHost www.mydomain.com> > pph_admin_value sendmail_path "/usr/sbin/sendmail -t [EMAIL PROTECTED]" That's actually a good proposition. The documentation team might want to catch this up. Unfortunately, this doesn't work with my setup, as I'm (mod_cgi-)wrapping all scripts. -daniel -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, visit: http://www.php.net/unsub.php
