On 8-Apr-07, at 10:35 AM, Michael Holzt wrote:
1) If the sender meant to send the mail, then the recipient knows who
the user is anyway.
Ehh, wrong. A malicious sender could have forged the headers.
In which case they don't give any information that could help in an
attack.
2) If the sender *didn't* mean to send the mail, the info is very
useful for anti-spam measures (and for you, in an abuse report).
You might have missed this part of Hans' mail:
Indeed I had. However it seems like overkill in light of my first
point. But I'm not passionate about it either way. We've had enough
posts here about the Received lines we add that I think it might be
time to make it a hook.
Matt.
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
