On Thu, 22 Jul 2010, Benny Pedersen wrote:
On tor 22 jul 2010 20:03:18 CEST, Charles Gregory wrote
A forged sender looks no different than a legitimate sender. Postfix would
have no way to be 'smart' about this (except for some instances of SPF
fail, but then why 'bounce'? Why not reject?).
and why not show logs ?
Sorry. Not OP. Just noting that the opinion that postfix should be smart
enough to rewrite a forged sender just doesn't make sense.
bounces is newer external since postfix change sender to mailer-daemon with
will end in some mailbox local if it was sent from local ip....
???? Postfix doesn't change the sender. Mailer Daemon is the 'sender' for
all buonces. But it will be sent TO the original sender listed in the
'From' header. If postfix has generated the From header based on
transaction authentication, then a 'bounce' would indeed go back to the
originating mail account. But if you are merely going by IP, then the
'sender' that postfix tries to 'bounce' mail to will be the forged sender.
And postfix has no way to know it is forged....
- C