Prevent header forgery
Jerry Benton
jerry.benton at mailborder.com
Sun Sep 2 09:17:58 UTC 2018
https://wiki.apache.org/spamassassin/FromNotReplyTo
--
Jerry Benton
www.mailborder.com
+1 (843) 800-8605
+44 (020) 3883-8605
-----Original Message-----
From: MailScanner
<mailscanner-bounces+jerry.benton=mailborder.com at lists.mailscanner.info> On
Behalf Of Antony Stone
Sent: Sunday, September 2, 2018 05:16
To: MailScanner Discussion <mailscanner at lists.mailscanner.info>
Subject: Re: Prevent header forgery
On Sunday 02 September 2018 at 11:08:57, Monis Monther wrote:
> Hi,
>
> Is there a way to prevent users from changing the header. We do not want
> the envelope to be different than the header. (i.e: header from must match
> return-path).
Have you looked at the headers of emails on this list?
For example, the message you just sent arrived with me showing, amongst
others:
Return-Path: <mailscanner-
bounces+antony.stone=mailscanner.open.source.it at lists.mailscanner.info>
From: Monis Monther <mmmm82 at gmail.com>
Reply-To: MailScanner Discussion <mailscanner at lists.mailscanner.info>
It's perfectly common for From to be different from Return-Path.
Regards,
Antony.
--
I conclude that there are two ways of constructing a software design: One
way
is to make it so simple that there are _obviously_ no deficiencies, and the
other way is to make it so complicated that there are no _obvious_
deficiencies.
- C A R Hoare
Please reply to the list;
please *don't* CC
me.
--
MailScanner mailing list
mailscanner at lists.mailscanner.info
http://lists.mailscanner.info/mailman/listinfo/mailscanner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5530 bytes
Desc: not available
URL: <http://lists.mailscanner.info/pipermail/mailscanner/attachments/20180902/35819a8c/attachment.bin>
More information about the MailScanner
mailing list