Flo Leibert wrote: > Hi again, > I forgot to add that I have of course my domain (test.com) in the > whitelist, because user1 should be able to receive mail from user2 etc > (lots of new users/lists, so it would be inconvenient if, once one is > created he had to be confirmed...) ~ However, I use POP before SMTP > authentication, thus I really need to rely on the Return-Path/RCPT TO > and need TMDA to ignore any other From: fields.
I still don't understand how that helps you. All of SMTP "mail from", Return-Path header and From header can be just as easily forged. The only way to stop spammers sending email pretending to be from your user ID, or domain, is for your mail server to block it.
signature.asc
Description: OpenPGP digital signature
_____________________________________________ tmda-users mailing list ([email protected]) http://tmda.net/lists/listinfo/tmda-users
