Benoit Tellier created JAMES-4034: ------------------------------------- Summary: SMTP submission: validate FROM header Key: JAMES-4034 URL: https://issues.apache.org/jira/browse/JAMES-4034 Project: James Server Issue Type: Improvement Components: SMTPServer Reporter: Benoit Tellier
h3. Why? Prevent and limit email forgery by local users. As a James administrator I should have a way to configure SMTP submission to reject emails spoofing somebody else mail adress. As of today: - JMAP stacks controls both the transport envelope and the headers (From) as mandated by the JMAP Mail RFC (RFC-8621) - However SMTP only controls the transport envelop and not the headers. This control is currently implemented into SenderAuthIdentifyVerificationHook and is intendeed as a hook on MAIL FROM SMTP command. We shall also enforce a control of the From header upon submission in SMTP. Such controls would be mandatory for use of Apache James in an environment where local users could not be fully trusted, as for instance a SaaS offer. h3. How? Modify SenderAuthIdentifyVerificationHook in order that it also is a JamesMessageHook called before enqueing and checks each and every From header the same way it checks "MAIL FROM" command. Modifying SenderAuthIdentifyVerificationHook would enforce this only for connected users IE mail submission and would not affect email relay. This also ensure this behaviour will apply by default. Refactoring of the underlying AbstractSenderAuthIdentifyVerificationHook might be required. -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org For additional commands, e-mail: server-dev-h...@james.apache.org