> have found his SenderHostIsNotLocal matcher to be insufficient
> to identify that the sender is fake because it simply checks to
> see if foo.com is a local address.
Depending upon how mobile your users are, you could use SMTP AUTH, or use
RemoteAddrNotInNetwork to discard messages claiming to be from a local user
that hasn't originated from one of your known subnets.
--- Noel
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
