Re: [vchkpw] unexpected Delivered-To

2003-10-07 Thread Kurt Bigler 
on 10/7/03 12:37 AM, an off-list replier wrote:

 How can this happen?
 
 *Any* header can be forged.:^)

Ok, but I'm not clear on one thing.  qmail+vpopmail is going to route
locally based on the to field of the incoming message, right?  So you are
saying this message was forged locally, meaning a hacked server?

Curiously your off-list reply cased my server to generate this message:

message is looping /var/vpopmail/domains/breathsense.com/kkb/Maildir/

and I got your reply in the form of a double-bounce, since your server
rejected the direct reply to you (the bounce message).  And thus I an using
the list again [EMAIL PROTECTED] the off-list conversation!

Thanks,
Kurt Bigler

Re: [vchkpw] unexpected Delivered-To

2003-10-07 Thread Tom Collins 
On Tuesday, October 7, 2003, at 12:25  AM, Kurt Bigler wrote:
Return-Path: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
Received: (qmail 43200 invoked from network); 6 Oct 2003 21:52:43 
-
Received: from unknown (HELO 24.153.97.91) (24.153.97.91)
by vps.breathsense.com with SMTP; 6 Oct 2003 21:52:43 -
To: [EMAIL PROTECTED]
The To header in the message isn't used for delivery.  Read up on the 
SMTP protocol, and you'll learn that there's the message, and an 
envelope that contains the sender's address (MAIL FROM, added as a 
Return-Path header by qmail) and the recipient's address (RCPT TO, 
added as Delivered-To by qmail/vdelivermail).

Email programs will use the same address for the From header and MAIL 
FROM, along with the same addresses for RCPT TO as in the To header.

--
Tom Collins
[EMAIL PROTECTED]
QmailAdmin: http://qmailadmin.sf.net/  Vpopmail: http://vpopmail.sf.net/
Info on the Sniffter hand-held Network Tester: http://sniffter.com/